Closed DCtheTall closed 5 years ago
Github is now auditing Node projects for the newly discovered lodash vulnerabilities. The project uses lodash as a peer dependency, so we need to audit what dependencies use it and probably explicitly install a version with the patch.
Fixed with https://github.com/DCtheTall/twilly/commit/bc71d0c293b5dc008d19e4d6eff8f6d4d41b65ab https://github.com/DCtheTall/twilly/commit/9d62a137e030fd41f0d1be51c73c210205aa96b7
Github is now auditing Node projects for the newly discovered lodash vulnerabilities. The project uses lodash as a peer dependency, so we need to audit what dependencies use it and probably explicitly install a version with the patch.