From dd730cc4cd0aa4a6facdfa093b94a3d5d5892a1a Mon Sep 17 00:00:00 2001
From: Chris Farhood <chris@farhood.org>
Date: Sun, 3 May 2026 22:27:30 +0000
Subject: [PATCH] fix: override lodash >=4.18.0 to patch code injection
 vulnerability

Co-Authored-By: Paperclip <noreply@paperclip.ing>
---
 package.json | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/package.json b/package.json
index 4e546c9..28bf36e 100644
--- a/package.json
+++ b/package.json
@@ -35,6 +35,7 @@
     "@types/react-dom": "^18.0.0",
     "eslint": "^8.57.0",
     "jsdom": "^24.0.0",
+    "lodash": "4.18.1",
     "notistack": "^3.0.0",
     "prettier": "^2.8.8",
     "react": "^18.3.1",
@@ -46,6 +47,7 @@
   "overrides": {
     "tar": "^7.5.11",
     "undici": "^7.24.3",
-    "vite": ">=6.4.2"
+    "vite": ">=6.4.2",
+    "lodash": ">=4.18.0"
   }
-}
+}
\ No newline at end of file