Closed rmkeezer closed 2 years ago
set from lodash should be used instead of lodash.set because it is outdated and has an unfixed prototype pollution vulnerability: https://security.snyk.io/vuln/SNYK-JS-LODASHSET-1320032
set
:tada: This PR is included in version 3.1.4 :tada:
The release is available on:
Your semantic-release bot :package::rocket:
set
from lodash should be used instead of lodash.set because it is outdated and has an unfixed prototype pollution vulnerability: https://security.snyk.io/vuln/SNYK-JS-LODASHSET-1320032