From 890b2def18e7babe981a8ede527abd31968d68f3 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 6 Feb 2019 22:01:56 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-73638
- https://snyk.io/vuln/SNYK-JS-LODASH-73639
---
 package-lock.json | 11 ++++++++---
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 4 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 57ef194..3010665 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -96,6 +96,11 @@
         "msgpack-rpc-lite": "1.0.1"
       },
       "dependencies": {
+        "lodash": {
+          "version": "4.17.5",
+          "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.5.tgz",
+          "integrity": "sha512-svL3uiZf1RwhH+cWrfZn3A4+U58wbP0tGVTLQPbjplZxZ8ROD9VLuNgsRniTlLe7OlSqR79RUehXgpBW/s0IQw=="
+        },
         "msgpack-rpc-lite": {
           "version": "1.0.1",
           "resolved": "https://registry.npmjs.org/msgpack-rpc-lite/-/msgpack-rpc-lite-1.0.1.tgz",
@@ -108,9 +113,9 @@
       }
     },
     "lodash": {
-      "version": "4.17.5",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.5.tgz",
-      "integrity": "sha512-svL3uiZf1RwhH+cWrfZn3A4+U58wbP0tGVTLQPbjplZxZ8ROD9VLuNgsRniTlLe7OlSqR79RUehXgpBW/s0IQw=="
+      "version": "4.17.11",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz",
+      "integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg=="
     },
     "minimist": {
       "version": "1.2.0",
diff --git a/package.json b/package.json
index 9642eaf..1c17d61 100644
--- a/package.json
+++ b/package.json
@@ -5,7 +5,7 @@
   "dependencies": {
     "bluebird": "^3.5.1",
     "jubatus": "^0.9.9",
-    "lodash": "^4.17.5",
+    "lodash": "^4.17.11",
     "minimist": "^1.2.0"
   },
   "repository": {