From 405632008ff4cf2ae3a9ec412d6fe9fe2f7f95d7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 5 Apr 2026 21:28:11 +0000 Subject: [PATCH] chore(deps): bump lodash from 4.17.21 to 4.18.1 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.21 to 4.18.1. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.21...4.18.1) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.18.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- backend/package.json | 2 +- pnpm-lock.yaml | 57 +++++++++++-------- .../members_enrichment_worker/package.json | 2 +- services/libs/data-access-layer/package.json | 2 +- 4 files changed, 35 insertions(+), 28 deletions(-) diff --git a/backend/package.json b/backend/package.json index 0abb5a6aaa..2e5607077d 100644 --- a/backend/package.json +++ b/backend/package.json @@ -112,7 +112,7 @@ "json2csv": "^5.0.7", "jsonwebtoken": "8.5.1", "jwks-rsa": "^3.0.1", - "lodash": "4.17.21", + "lodash": "4.18.1", "moment": "2.29.4", "moment-timezone": "^0.5.34", "mv": "2.1.1", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index cc406b82ae..cb908b616a 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -271,8 +271,8 @@ importers: specifier: ^3.0.1 version: 3.1.0 lodash: - specifier: 4.17.21 - version: 4.17.21 + specifier: 4.18.1 + version: 4.18.1 moment: specifier: 2.29.4 version: 2.29.4 @@ -1062,8 +1062,8 @@ importers: specifier: ~1.6.2 version: 1.6.8 lodash: - specifier: ~4.17.21 - version: 4.17.21 + specifier: ~4.18.1 + version: 4.18.1 moment: specifier: ~2.29.4 version: 2.29.4 @@ -2058,8 +2058,8 @@ importers: specifier: ~9.0.5 version: 9.0.5 lodash: - specifier: ^4.17.21 - version: 4.17.21 + specifier: ^4.18.1 + version: 4.18.1 lodash.clonedeep: specifier: ^4.5.0 version: 4.5.0 @@ -6317,6 +6317,7 @@ packages: dottie@2.0.6: resolution: {integrity: sha512-iGCHkfUc5kFekGiqhe8B/mdaurD+lakO9txNnTvKtA6PISrw86LgqHvRzWYPyoE2Ph5aMIrCw9/uko6XHTKCwA==} + deprecated: Package no longer supported. Contact Support at https://www.npmjs.com/support for more info. dtrace-provider@0.8.8: resolution: {integrity: sha512-b7Z7cNtHPhH9EJhNNbbeqTcXB8LGFFZhq1PGgEvpeHlzd36bhbdTWoE/Ba/YguqpBSlAPKnARWhVlhunCMwfxg==} @@ -7036,6 +7037,7 @@ packages: git-raw-commits@4.0.0: resolution: {integrity: sha512-ICsMM1Wk8xSGMowkOmPrzo2Fgmfo4bMHLNX6ytHjajRJUqvHOw/TFapQ+QG75c3X/tTDDhOSRPGC52dDbNM8FQ==} engines: {node: '>=16'} + deprecated: This package is no longer maintained. For the JavaScript API, please use @conventional-changelog/git-client instead. hasBin: true glob-parent@5.1.2: @@ -7948,6 +7950,9 @@ packages: lodash@4.17.21: resolution: {integrity: sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg==} + lodash@4.18.1: + resolution: {integrity: sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q==} + log-symbols@4.1.0: resolution: {integrity: sha512-8XPvpAA8uyhfteu8pIvQxpJZ7SYYdpUivZpGy6sFsBuKRY/7rQGavedeB8aK+Zkyq6upMFVL/9AW6vOYzfRyLg==} engines: {node: '>=10'} @@ -8224,8 +8229,8 @@ packages: engines: {node: '>= 4.4.x'} hasBin: true - needle@https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: - resolution: {tarball: https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b} + needle@git+https://git@github.com:clearbit/needle.git#84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: + resolution: {commit: 84d28b5f2c3916db1e7eb84aeaa9d976cc40054b, repo: git@github.com:clearbit/needle.git, type: git} version: 0.7.10 engines: {node: '>= 0.10.x'} hasBin: true @@ -10428,8 +10433,8 @@ snapshots: dependencies: '@aws-crypto/sha256-browser': 3.0.0 '@aws-crypto/sha256-js': 3.0.0 - '@aws-sdk/client-sso-oidc': 3.572.0(@aws-sdk/client-sts@3.572.0) - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sso-oidc': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/core': 3.572.0 '@aws-sdk/credential-provider-node': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0) '@aws-sdk/middleware-host-header': 3.567.0 @@ -10623,11 +10628,11 @@ snapshots: transitivePeerDependencies: - aws-crt - '@aws-sdk/client-sso-oidc@3.572.0(@aws-sdk/client-sts@3.572.0)': + '@aws-sdk/client-sso-oidc@3.572.0': dependencies: '@aws-crypto/sha256-browser': 3.0.0 '@aws-crypto/sha256-js': 3.0.0 - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/core': 3.572.0 '@aws-sdk/credential-provider-node': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0) '@aws-sdk/middleware-host-header': 3.567.0 @@ -10666,7 +10671,6 @@ snapshots: '@smithy/util-utf8': 2.3.0 tslib: 2.6.2 transitivePeerDependencies: - - '@aws-sdk/client-sts' - aws-crt '@aws-sdk/client-sso@3.556.0': @@ -10842,11 +10846,11 @@ snapshots: transitivePeerDependencies: - aws-crt - '@aws-sdk/client-sts@3.572.0': + '@aws-sdk/client-sts@3.572.0(@aws-sdk/client-sso-oidc@3.572.0)': dependencies: '@aws-crypto/sha256-browser': 3.0.0 '@aws-crypto/sha256-js': 3.0.0 - '@aws-sdk/client-sso-oidc': 3.572.0(@aws-sdk/client-sts@3.572.0) + '@aws-sdk/client-sso-oidc': 3.572.0 '@aws-sdk/core': 3.572.0 '@aws-sdk/credential-provider-node': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0) '@aws-sdk/middleware-host-header': 3.567.0 @@ -10885,6 +10889,7 @@ snapshots: '@smithy/util-utf8': 2.3.0 tslib: 2.6.2 transitivePeerDependencies: + - '@aws-sdk/client-sso-oidc' - aws-crt '@aws-sdk/client-sts@3.985.0': @@ -11050,7 +11055,7 @@ snapshots: '@aws-sdk/credential-provider-ini@3.572.0(@aws-sdk/client-sso-oidc@3.572.0)(@aws-sdk/client-sts@3.572.0)': dependencies: - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/credential-provider-env': 3.568.0 '@aws-sdk/credential-provider-process': 3.572.0 '@aws-sdk/credential-provider-sso': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) @@ -11227,7 +11232,7 @@ snapshots: '@aws-sdk/credential-provider-web-identity@3.568.0(@aws-sdk/client-sts@3.572.0)': dependencies: - '@aws-sdk/client-sts': 3.572.0 + '@aws-sdk/client-sts': 3.572.0(@aws-sdk/client-sso-oidc@3.572.0) '@aws-sdk/types': 3.567.0 '@smithy/property-provider': 2.2.0 '@smithy/types': 2.12.0 @@ -11539,7 +11544,7 @@ snapshots: '@aws-sdk/token-providers@3.572.0(@aws-sdk/client-sso-oidc@3.572.0)': dependencies: - '@aws-sdk/client-sso-oidc': 3.572.0(@aws-sdk/client-sts@3.572.0) + '@aws-sdk/client-sso-oidc': 3.572.0 '@aws-sdk/types': 3.567.0 '@smithy/property-provider': 2.2.0 '@smithy/shared-ini-file-loader': 2.4.0 @@ -13516,7 +13521,7 @@ snapshots: '@sapphire/shapeshift@3.9.7': dependencies: fast-deep-equal: 3.1.3 - lodash: 4.17.21 + lodash: 4.18.1 '@sapphire/snowflake@3.5.1': {} @@ -14404,7 +14409,7 @@ snapshots: '@babel/traverse': 7.23.2 '@babel/types': 7.17.0 javascript-natural-sort: 0.7.1 - lodash: 4.17.21 + lodash: 4.18.1 prettier: 3.3.3 transitivePeerDependencies: - supports-color @@ -15542,8 +15547,8 @@ snapshots: dependencies: bluebird: 2.11.0 create-error: 0.3.1 - lodash: 4.17.21 - needle: https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b + lodash: 4.18.1 + needle: git+https://git@github.com:clearbit/needle.git#84d28b5f2c3916db1e7eb84aeaa9d976cc40054b cli-boxes@2.2.1: {} @@ -18001,6 +18006,8 @@ snapshots: lodash@4.17.21: {} + lodash@4.18.1: {} + log-symbols@4.1.0: dependencies: chalk: 4.1.2 @@ -18254,7 +18261,7 @@ snapshots: transitivePeerDependencies: - supports-color - needle@https://codeload.github.com/clearbit/needle/tar.gz/84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: + needle@git+https://git@github.com:clearbit/needle.git#84d28b5f2c3916db1e7eb84aeaa9d976cc40054b: dependencies: iconv-lite: 0.4.24 @@ -19426,7 +19433,7 @@ snapshots: cli-color: 1.4.0 fs-extra: 4.0.3 js-beautify: 1.15.1 - lodash: 4.17.21 + lodash: 4.18.1 resolve: 1.22.8 umzug: 2.3.0 yargs: 8.0.2 @@ -19440,7 +19447,7 @@ snapshots: debug: 4.4.0(supports-color@5.5.0) dottie: 2.0.6 inflection: 1.13.4 - lodash: 4.17.21 + lodash: 4.18.1 moment: 2.30.1 moment-timezone: 0.5.45 pg-connection-string: 2.6.4 diff --git a/services/apps/members_enrichment_worker/package.json b/services/apps/members_enrichment_worker/package.json index 5de18ec903..849db9bc11 100644 --- a/services/apps/members_enrichment_worker/package.json +++ b/services/apps/members_enrichment_worker/package.json @@ -26,7 +26,7 @@ "@temporalio/workflow": "~1.11.8", "auth0": "^4.3.1", "axios": "~1.6.2", - "lodash": "~4.17.21", + "lodash": "~4.18.1", "moment": "~2.29.4", "tsx": "^4.7.1", "typescript": "^5.6.3" diff --git a/services/libs/data-access-layer/package.json b/services/libs/data-access-layer/package.json index e3a4086607..e6925c037a 100644 --- a/services/libs/data-access-layer/package.json +++ b/services/libs/data-access-layer/package.json @@ -18,7 +18,7 @@ "@crowd/telemetry": "workspace:*", "@crowd/types": "workspace:*", "html-to-text": "~9.0.5", - "lodash": "^4.17.21", + "lodash": "^4.18.1", "lodash.clonedeep": "^4.5.0", "lodash.map": "^4.6.0", "lodash.merge": "^4.6.2",