From 15f1dd59563d8a38a03c4cb784a1234046d6fa1a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 23 Apr 2024 04:59:09 +0000
Subject: [PATCH] fix: javascript/package.json & javascript/package-lock.json
 to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-HOTFORMULAPARSER-541328
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
---
 javascript/package-lock.json | 14 +++++++-------
 javascript/package.json      |  4 ++--
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/javascript/package-lock.json b/javascript/package-lock.json
index 5ff3feb2e..295d8e65c 100644
--- a/javascript/package-lock.json
+++ b/javascript/package-lock.json
@@ -19,11 +19,11 @@
       "integrity": "sha512-Al3nHGQGqDYqqinXhQzmwmcRToe/3WyBv4N8aZc5Pef8xw2neZlR9VPi84Sa23JtgWcucu18HxVZrnI0fn2etw=="
     },
     "hot-formula-parser": {
-      "version": "3.0.0",
-      "resolved": "https://registry.npmjs.org/hot-formula-parser/-/hot-formula-parser-3.0.0.tgz",
-      "integrity": "sha512-CHLTrsrv29it5XPcHalNO8ClcJGHefwf599MePlG5dYzxxtbPqx/qt8CkrqvxQeNA5XtkAUcxU62OFv0z2L49A==",
+      "version": "3.0.1",
+      "resolved": "https://registry.npmjs.org/hot-formula-parser/-/hot-formula-parser-3.0.1.tgz",
+      "integrity": "sha512-QhYPVlVh/GF/hHtBp+MwgDp5kpgrrjeJi3d3/GxTWtqwLBOOM4KlZT/YWcsfZj5JE68MNvFgj3ZzYpkGyvGtwA==",
       "requires": {
-        "@handsontable/formulajs": "^2.0.0",
+        "@handsontable/formulajs": "^2.0.1",
         "tiny-emitter": "^2.0.1"
       }
     },
@@ -33,9 +33,9 @@
       "integrity": "sha512-/2JL4Xv6xfhN2+AEKQGTYr1LZTmBCR/5fHxJVvb9zWNsmKZfKrl3wYYK8SD/Z8kXkf+ZSusfumLZ4wDTHrWujA=="
     },
     "lodash": {
-      "version": "4.17.20",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.20.tgz",
-      "integrity": "sha512-PlhdFcillOINfeV7Ni6oF1TAEayyZBoZ8bcshTHqOYJYlrqzRK5hagpagky5o4HfCzzd1TRkXPMFq6cKk9rGmA=="
+      "version": "4.17.21",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
+      "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg=="
     },
     "tiny-emitter": {
       "version": "2.1.0",
diff --git a/javascript/package.json b/javascript/package.json
index 6c78dc8fb..02e529248 100644
--- a/javascript/package.json
+++ b/javascript/package.json
@@ -4,7 +4,7 @@
   "main": "index.js",
   "license": "MIT",
   "dependencies": {
-    "hot-formula-parser": "^3.0.0",
-    "lodash": "^4.17.20"
+    "hot-formula-parser": "^3.0.1",
+    "lodash": "^4.17.21"
   }
 }