I noticed that Github gives a security vulnerability (CVE-2018-3721) warning because of an outdated lodash version (3.10). This version is included because it's a dependency of request-promise 1.0.2 which this package still depends on.
Are there breaking changes which stop us from bumping the request-promise version?
I noticed that Github gives a security vulnerability (CVE-2018-3721) warning because of an outdated lodash version (3.10). This version is included because it's a dependency of request-promise 1.0.2 which this package still depends on.
Are there breaking changes which stop us from bumping the request-promise version?