Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(package): bump lodash version #3203

Merged
merged 1 commit into from
Nov 7, 2018

Conversation

jniles
Copy link
Contributor

@jniles jniles commented Nov 6, 2018

Bumps lodash to 4.17.5 avoid medium severity vulnerability (https://nvd.nist.gov/vuln/detail/CVE-2018-3721) found in 4.17.4.

Closes #3177.

Bumps lodash to 4.17.5 avoid medium severity vulnerability
(https://nvd.nist.gov/vuln/detail/CVE-2018-3721) found in 4.17.4.

Closes karma-runner#3177.
@googlebot
Copy link

Thanks for your pull request. It looks like this may be your first contribution to a Google open source project (if not, look below for help). Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

📝 Please visit https://cla.developers.google.com/ to sign.

Once you've signed (or fixed any issues), please reply here (e.g. I signed it!) and we'll verify it.


What to do if you already signed the CLA

Individual signers
Corporate signers

@jniles
Copy link
Contributor Author

jniles commented Nov 6, 2018

I signed it!

@googlebot
Copy link

CLAs look good, thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants