Closed pdf13 closed 6 years ago
@baer This is a very simple and tiny PR. Would you mind to review it for us?
Would be good to get this merged and released.
Just realised.. 925 files changed? Would it be better to just update lodash in package.json
@pdf13 It looks like this PR has altered the .gitignore
and adds all of node_modules
to version control. We won't be able to merge this PR because of this, so I'm going to close it.
Packages that use babel-plugin-transform-define are receiving a warning on npm audit of a Prototype Pollution problem. This is already fixed on lodash, so this commit updates the patch of it to version 4.17.10, so this warning will disappear.
babel-plugin-transform-define
and runnpm audit
with and without this change. Check that there is a low vulnerability before, that is fixed with this PR.