From 1343c55b676b746fe7aebc2a5b65502d9cbd3441 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 2 Apr 2026 22:30:58 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-LODASH-15869625
- https://snyk.io/vuln/SNYK-JS-LODASH-15869619
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 8fe9f087..9a446df1 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -19,7 +19,7 @@
 				"dompurify": "3.2.4",
 				"flatpickr": "4.6.3",
 				"immutable": "^4.0.0-rc.12",
-				"lodash": "^4.17.21",
+				"lodash": "^4.18.1",
 				"memoize-one": "^6.0.0",
 				"moment": "^2.29.4",
 				"path-parse": "^1.0.7",
@@ -8742,9 +8742,9 @@
 			}
 		},
 		"node_modules/lodash": {
-			"version": "4.17.23",
-			"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz",
-			"integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==",
+			"version": "4.18.1",
+			"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.18.1.tgz",
+			"integrity": "sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q==",
 			"license": "MIT"
 		},
 		"node_modules/lodash.clonedeep": {
diff --git a/package.json b/package.json
index c825b3e9..fc098260 100644
--- a/package.json
+++ b/package.json
@@ -56,7 +56,7 @@
 		"dompurify": "3.2.4",
 		"flatpickr": "4.6.3",
 		"immutable": "^4.0.0-rc.12",
-		"lodash": "^4.17.21",
+		"lodash": "^4.18.1",
 		"memoize-one": "^6.0.0",
 		"moment": "^2.29.4",
 		"path-parse": "^1.0.7",