deps: Update wuzzy to fix vulnerability (#462)

5 years ago · 2173c4cf83
parent a918a9d6fa
commit 2173c4cf83
2 changed files with 10 additions and 8 deletions
--- a/package.json
+++ b/package.json
@ -125,7 +125,7 @@
    "turndown": "^5.0.3",
    "url": "^0.11.0",
    "valid-url": "^1.0.9",
-    "wuzzy": "^0.1.3",
+    "wuzzy": "^0.1.4",
    "yargs-parser": "^13.0.0"
  },
  "bundleDependencies": [
--- a/yarn.lock
+++ b/yarn.lock
@ -5271,9 +5271,10 @@ lodash@^4.17.10, lodash@^4.17.11, lodash@^4.17.4, lodash@^4.17.5:
  version "4.17.11"
  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.11.tgz#b39ea6229ef607ecd89e2c8df12536891cac9b8d"

-lodash@~2.4.x:
-  version "2.4.2"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-2.4.2.tgz#fadd834b9683073da179b3eae6d9c0d15053f73e"
+lodash@^4.17.15:
+  version "4.17.15"
+  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.15.tgz#b447f6670a0455bbfeedd11392eff330ea097548"
+  integrity sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A==

 log-symbols@2.2.0, log-symbols@^2.2.0:
  version "2.2.0"
@ -8628,11 +8629,12 @@ ws@~3.3.1:
    safe-buffer "~5.1.0"
    ultron "~1.1.0"

-wuzzy@^0.1.3:
-  version "0.1.3"
-  resolved "https://registry.yarnpkg.com/wuzzy/-/wuzzy-0.1.3.tgz#a88515e269fb3851f24c251f0884dd76be30c300"
+wuzzy@^0.1.4:
+  version "0.1.4"
+  resolved "https://registry.yarnpkg.com/wuzzy/-/wuzzy-0.1.4.tgz#f2ea42c5c5a216ef7dc68158356a7d5f84432102"
+  integrity sha512-0I20vx7xWb+fZ1XKw54EhZukVsH3rRKnwtdu+MCb2nHITeypPZRr9Y1VOFdeZu48YvzxO33ReKoyIP5IG+WaOw==
  dependencies:
-    lodash "~2.4.x"
+    lodash "^4.17.15"

 x-is-string@^0.1.0:
  version "0.1.0"