[Snyk] Upgrade @types/lodash from 4.14.202 to 4.17.21

[youngbryanyu]

Snyk has created this PR to upgrade @types/lodash from 4.14.202 to 4.17.21.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 22 versions ahead of your current version.

• The recommended version was released 23 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Asymmetric Resource Consumption (Amplification) SNYK-JS-BODYPARSER-7926860	624	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-JWS-14188253	624	No Known Exploit
	Improper Verification of Cryptographic Signature SNYK-JS-JWS-14188253	624	No Known Exploit
	Improper Neutralization of Special Elements in Data Query Logic SNYK-JS-MONGOOSE-8446504	624	Proof of Concept
	Improper Neutralization of Special Elements in Data Query Logic SNYK-JS-MONGOOSE-8623536	624	Proof of Concept
	Uncontrolled Recursion SNYK-JS-NODEFORGE-14125745	624	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	624	No Known Exploit
	Open Redirect SNYK-JS-EXPRESS-6474509	624	No Known Exploit
	Cross-site Scripting SNYK-JS-EXPRESS-7926867	624	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-7573289	624	No Known Exploit
	Predictable Value Range from Previous Values SNYK-JS-FORMDATA-10841150	624	Proof of Concept
	Uncontrolled Resource Consumption ('Resource Exhaustion') SNYK-JS-GRPCGRPCJS-7242922	624	No Known Exploit
	Resource Exhaustion SNYK-JS-JOSE-6419224	624	No Known Exploit
	Interpretation Conflict SNYK-JS-NODEFORGE-14114940	624	No Known Exploit
	Integer Overflow or Wraparound SNYK-JS-NODEFORGE-14125097	624	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-7925106	624	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-PATHTOREGEXP-8482416	624	Proof of Concept
	Cross-site Scripting SNYK-JS-SEND-7926862	624	No Known Exploit
	Cross-site Scripting SNYK-JS-SERVESTATIC-7926865	624	No Known Exploit

Release notes

Package name: @types/lodash

• 4.17.21 - 2025-11-22
• 4.17.20 - 2025-07-01
• 4.17.19 - 2025-06-25
• 4.17.18 - 2025-06-18
• 4.17.17 - 2025-05-20
• 4.17.16 - 2025-03-01
• 4.17.15 - 2025-01-28
• 4.17.14 - 2025-01-03
• 4.17.13 - 2024-10-30
• 4.17.12 - 2024-10-19
• 4.17.11 - 2024-10-18
• 4.17.10 - 2024-10-03
• 4.17.9 - 2024-09-23
• 4.17.8 - 2024-09-23
• 4.17.7 - 2024-07-16
• 4.17.6 - 2024-06-27
• 4.17.5 - 2024-06-08
• 4.17.4 - 2024-05-17
• 4.17.3 - 2024-05-16
• 4.17.2 - 2024-05-16
• 4.17.1 - 2024-05-04
• 4.17.0 - 2024-03-12
• 4.14.202 - 2023-11-21

from @types/lodash GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs