search

snyk / nodejs-lockfile-parser

Generate a Snyk dependency tree from package-lock.json or yarn.lock file
Other
59 stars 28 forks source link

fix: bump vulnerable lodash 4.17.10 to ^4.17.11 #37

Closed michael-go closed 5 years ago

michael-go commented 5 years ago

fixes these vulns:

CLAassistant commented 5 years ago

CLA assistant check
All committers have signed the CLA.

snyksec commented 5 years ago

:tada: This PR is included in version 1.10.2 :tada:

The release is available on:

Your semantic-release bot :package::rocket: