Open bcgilliom opened 7 months ago
It seems the guidance is to no longer use the individual imports (they are basically deprecated) the security issue is fixed in the main package as of 4.17.19, but I think the individual packages (like pick) didn't get repacked on npm?
pick
https://github.com/advisories/GHSA-p6mc-m468-83gw
https://github.com/lodash/lodash/issues/5809
It seems the guidance is to no longer use the individual imports (they are basically deprecated) the security issue is fixed in the main package as of 4.17.19, but I think the individual packages (like
pick
) didn't get repacked on npm?https://github.com/advisories/GHSA-p6mc-m468-83gw
https://github.com/lodash/lodash/issues/5809