Dependency `lodash.set` has a vulnerability
vergilfromadyen opened this issue · comments
Details:
https://security.snyk.io/vuln/SNYK-JS-LODASHSET-1320032
I don't know that the impact is significant, but this trips package scanners which makes it difficult to use Bumper in certain contexts.