From 65c4539277b46a4831659bb4074098a554ffae90 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 17 Aug 2020 05:35:45 +0000
Subject: [PATCH] fix: package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DOTPROP-543489
- https://snyk.io/vuln/SNYK-JS-LODASH-590103
---
 package.json | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index 217ded7a6b..b73143b411 100644
--- a/package.json
+++ b/package.json
@@ -54,7 +54,7 @@
     "abbrev": "^1.1.1",
     "ansi-escapes": "^3.1.0",
     "chalk": "^2.4.1",
-    "configstore": "^3.1.2",
+    "configstore": "^5.0.0",
     "debug": "^3.1.0",
     "get-uri": "2.0.2",
     "hasbin": "^1.2.3",
@@ -73,7 +73,7 @@
     "snyk-gradle-plugin": "2.1.3",
     "snyk-module": "1.9.1",
     "snyk-mvn-plugin": "2.0.1",
-    "snyk-nodejs-lockfile-parser": "1.10.1",
+    "snyk-nodejs-lockfile-parser": "1.10.2",
     "snyk-nuget-plugin": "1.6.5",
     "snyk-php-plugin": "1.5.2",
     "snyk-policy": "1.13.3",
@@ -87,7 +87,7 @@
     "tempfile": "^2.0.0",
     "then-fs": "^2.0.0",
     "undefsafe": "^2.0.0",
-    "update-notifier": "^2.5.0",
+    "update-notifier": "^4.0.0",
     "uuid": "^3.2.1"
   },
   "devDependencies": {