Security vulnerability found for dependency lodash

[acazacu]

The current release has a lodash dependency set to a fixed version. This version of lodash seems have a high severity security vulnerability.

lodash should be updated to fix the reported vulnerability.

CVE-2019-10744
More information
high severity
Vulnerable versions: < 4.17.13
Patched version: 4.17.13

Affected versions of lodash are vulnerable to Prototype Pollution.
The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.

[jimthedev]

Working on this right now. Thanks.

[commitizen-bot]

🎉 This issue has been resolved in version 3.1.2 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀