upgade lodash to mitigate vulnerabilities on lodash < 4.17.13

vbardales / chai-properties

Properties matcher for chai that assert values have all the same attributes and values without asserting strict object equality.

16 stars 9 forks source link

upgade lodash to mitigate vulnerabilities on lodash < 4.17.13 #18

Closed josmardias closed 4 years ago

josmardias commented 4 years ago

I'm using chai-properties in a project and Github says that we are using a vulnerable version of lodash. Turns out chai-properties in one the the dependencies using an outdated version of lodash. This PR improves chai-properties to use a newer version. Tests are passing.

josmardias commented 4 years ago

@vbardales

vbardales commented 4 years ago

Done, thanks!