From 994763544b876340619c8bf936238ba87093fae3 Mon Sep 17 00:00:00 2001
From: "dependabot-preview[bot]"
 <27856297+dependabot-preview[bot]@users.noreply.github.com>
Date: Thu, 29 Oct 2020 10:59:11 +0000
Subject: [PATCH] [Security] Bump lodash from 4.17.13 to 4.17.20

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.13 to 4.17.20. **This update includes security fixes.**
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.13...4.17.20)

Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
---
 package.json |  2 +-
 yarn.lock    | 10 +++-------
 2 files changed, 4 insertions(+), 8 deletions(-)

diff --git a/package.json b/package.json
index 894d30c..fc43251 100644
--- a/package.json
+++ b/package.json
@@ -26,7 +26,7 @@
   },
   "dependencies": {
     "dns-lookup-cache": "1.0.3",
-    "lodash": "4.17.13",
+    "lodash": "4.17.20",
     "request": "2.88.0"
   },
   "devDependencies": {
diff --git a/yarn.lock b/yarn.lock
index 1ce6c0d..5883a6b 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -882,13 +882,9 @@ locate-path@^3.0.0:
     p-locate "^3.0.0"
     path-exists "^3.0.0"
 
-lodash@4.17.13, lodash@^4.17.11, lodash@^4.17.5:
-  version "4.17.13"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.13.tgz#0bdc3a6adc873d2f4e0c4bac285df91b64fc7b93"
-
-lodash@^4.17.15:
-  version "4.17.15"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.15.tgz#b447f6670a0455bbfeedd11392eff330ea097548"
+lodash@4.17.20, lodash@^4.17.11, lodash@^4.17.15, lodash@^4.17.5:
+  version "4.17.20"
+  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.20.tgz#b44a9b6297bcb698f1c51a3545a2b3b368d59c52"
 
 log-driver@^1.2.7:
   version "1.2.7"