Yarn classic seems to depend on versions of lodash that are <4.17.21, which are being flagged by our governance scan checker on deploy as security risks. As a result, we can not use yarn classic. This will pin lodash to version >= 4.17.21, which is free of security vulnerabilities as reported by the governance scan.
Yarn classic seems to depend on versions of lodash that are <4.17.21, which are being flagged by our governance scan checker on deploy as security risks. As a result, we can not use yarn classic. This will pin lodash to version >= 4.17.21, which is free of security vulnerabilities as reported by the governance scan.