From 2eac28381a486306cc37a3c63439fda6fe24743d Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 30 Mar 2021 23:18:52 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984
---
 package-lock.json | 6 +++---
 package.json      | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)
 mode change 100755 => 100644 package.json

diff --git a/package-lock.json b/package-lock.json
index 081d9b6..cf9fd28 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -3311,9 +3311,9 @@
       "integrity": "sha1-hnrHTjhkGHsdPUfZlqeOxciDB3c="
     },
     "underscore": {
-      "version": "1.9.2",
-      "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.9.2.tgz",
-      "integrity": "sha512-D39qtimx0c1fI3ya1Lnhk3E9nONswSKhnffBI0gME9C99fYOkNi04xs8K6pePLhvl1frbDemkaBQ5ikWllR2HQ=="
+      "version": "1.12.1",
+      "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.12.1.tgz",
+      "integrity": "sha512-hEQt0+ZLDVUMhebKxL4x1BTtDY7bavVofhZ9KZ4aI26X9SRaE+Y3m83XUL1UP2jn8ynjndwCCpEHdUG+9pP1Tw=="
     },
     "universalify": {
       "version": "0.1.2",
diff --git a/package.json b/package.json
old mode 100755
new mode 100644
index b948f1f..cdcc3cb
--- a/package.json
+++ b/package.json
@@ -24,7 +24,7 @@
     "request": "^2.88.0",
     "request-promise-native": "^1.0.5",
     "sharp": "^0.21.0",
-    "underscore": "^1.9.1",
+    "underscore": "^1.12.1",
     "uuid": "^3.3.2"
   },
   "devDependencies": {