diff --git a/packages/react-onegraph/yarn.lock b/packages/react-onegraph/yarn.lock
index 64a3191..09d826e 100644
--- a/packages/react-onegraph/yarn.lock
+++ b/packages/react-onegraph/yarn.lock
@@ -1646,9 +1646,9 @@ kind-of@^6.0.0, kind-of@^6.0.2:
   integrity sha512-s5kLOcnH0XqDO+FvuaLX8DDjZ18CGFk7VygH40QoKPUQhW4e2rvM0rwUq0t8IQDOwYSeLK01U90OjzBTme2QqA==
 
 lodash@^4.17.4:
-  version "4.17.11"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.11.tgz#b39ea6229ef607ecd89e2c8df12536891cac9b8d"
-  integrity sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg==
+  version "4.17.19"
+  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.19.tgz#e48ddedbe30b3321783c5b4301fbd353bc1e4a4b"
+  integrity sha512-JNvd8XER9GQX0v2qJgsaN/mzFCNA5BRe/j8JN9d+tWyGLSodKQHKFicdwNYzWwI3wjRnaKPsGj1XkBjx/F96DQ==
 
 loose-envify@^1.0.0:
   version "1.4.0"
@@ -1902,10 +1902,10 @@ once@^1.3.0:
   dependencies:
     wrappy "1"
 
-onegraph-auth@^0.2.18:
-  version "0.2.18"
-  resolved "https://registry.yarnpkg.com/onegraph-auth/-/onegraph-auth-0.2.18.tgz#4e901656a4ccf00c6cbfd08c37868519b3fdf2fa"
-  integrity sha512-L/RN/0e/XDLwjI1OuV1GJR52ReS5pT1j1/VQuaVl4r+wg+vAUbQruzHMFJDjgzx1pM1HIOjte61RwoHWMseK2Q==
+onegraph-auth@^2.2.4:
+  version "2.2.4"
+  resolved "https://registry.yarnpkg.com/onegraph-auth/-/onegraph-auth-2.2.4.tgz#96a248768427aeec918381043f7762a892cf9279"
+  integrity sha512-YLbE04/E7303QL1VKg5JHvSiMzfqepXkHX6BbpSwEcXCWPTzONffz8mYyFH5loy8eLbMn1sJkinHr3Mn+l9oLg==
   dependencies:
     idx "^2.2.0"
     regenerator-runtime "^0.11.1"