This PR updates packages that use lodash to resolve the security alerts from GitHub. Although the risk to the end user was low as these were all devDependencies, I do recommend installing the latest update once this is merged.
WHERE SHOULD THE REVIEWER START?
yarn.lock
HOW CAN THIS BE MANUALLY TESTED?
Run yarn audit. You should get this:
ANY NEW DEPENDENCIES ADDED?
None new, several updated.
CHECKLIST
Be sure all items are ✅ before submitting a PR for review.
[x] Verify the linter and tests pass: npm run review
[x] Verify this branch is rebased with the latest master
OVERVIEW
This PR updates packages that use
lodashto resolve the security alerts from GitHub. Although the risk to the end user was low as these were alldevDependencies, I do recommend installing the latest update once this is merged.WHERE SHOULD THE REVIEWER START?
yarn.lock
HOW CAN THIS BE MANUALLY TESTED?
Run
yarn audit. You should get this:ANY NEW DEPENDENCIES ADDED?
None new, several updated.
CHECKLIST
Be sure all items are ✅ before submitting a PR for review.
npm run reviewGIF
Share a fun GIF to say thanks to your reviewer: https://giphy.com