Merge pull request #9 from tweag/dependabot/npm_and_yarn/part2/Vulner…

…ableAppTwo/lodash-4.17.21 Bump lodash from 4.17.10 to 4.17.21 in /part2/VulnerableAppTwo
tweag · Jul 13, 2024 · c7e82d3 · c7e82d3
2 parents 1eb3cef + 158531b
commit c7e82d3
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/part2/VulnerableAppTwo/package.json b/part2/VulnerableAppTwo/package.json
@@ -8,7 +8,7 @@
   },
   "dependencies": {
     "express": "4.16.0", // Known to have vulnerabilities in this version
-    "lodash": "4.17.10", // Vulnerable version
+    "lodash": "4.17.21", // Vulnerable version
     "marked": "0.3.6", // Vulnerable version
     "mongoose": "5.0.16", // Known vulnerabilities in this version
     "request": "2.81.0" // Deprecated and has known vulnerabilities