apigee-127
Updated lodash and replaced a deprecated function call
This fixes the non-recognition of async callbacks in Runner.create function lodash/lodash#2768 and a prototype pollution vulnerability patched in lodash >=4.17.5 #133
Thanks for your pull request. It looks like this may be your first contribution to a Google open source project (if not, look below for help). Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).
:memo: Please visit https://cla.developers.google.com/ to sign.
Once you've signed (or fixed any issues), please reply here (e.g. I signed it!) and we'll verify it.
What to do if you already signed the CLA
Individual signers
- It's possible we don't have your GitHub username or you're using a different email address on your commit. Check your existing CLA data and verify that your email is set on your git commits.
Corporate signers
- Your company has a Point of Contact who decides which employees are authorized to participate. Ask your POC to be added to the group of authorized contributors. If you don't know who your Point of Contact is, direct the Google project maintainer to go/cla#troubleshoot (Public version).
- The email used to register you as an authorized contributor must be the email used for the Git commit. Check your existing CLA data and verify that your email is set on your git commits.
- The email used to register you as an authorized contributor must also be attached to your GitHub account.
@theganyo, @whitlockjc, This PR resolves a vulnerability reported by npm audit, https://www.npmjs.com/advisories/577
Please merge.
Hi Folks,
Do you have any update about this Pull Request? I'm with problems of vulnerability in the lodash package, can you help me and merge this pull?
Vulnerability: https://www.npmjs.com/advisories/782
Any update on releasing this PR? Looks like this project is no longer maintained. Should we switch to an alternate library?
