From aaea93991c2433ee5b7e334231332373c212c54e Mon Sep 17 00:00:00 2001
From: Aaron Eppert <aeppert@gmail.com>
Date: Mon, 15 Jul 2019 14:26:21 -0400
Subject: [PATCH 1/4] Update for CVE-2018-16487 around lodash

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index 03ed70e5..69fec35a 100644
--- a/package.json
+++ b/package.json
@@ -65,7 +65,7 @@
     "bluebird": "3.5.1",
     "enforce": "0.1.7",
     "hat": "0.0.3",
-    "lodash": "^4.17.11",
+    "lodash": "^4.17.14",
     "path-is-absolute": "1.0.1",
     "sql-ddl-sync": "0.3.15",
     "sql-query": "0.1.27"

From 93f761e9f75593c3f52b7d9243be412c3889ef7d Mon Sep 17 00:00:00 2001
From: Aaron Eppert <aeppert@gmail.com>
Date: Tue, 16 Jul 2019 17:06:01 -0400
Subject: [PATCH 2/4] Fixing requirements

---
 package-lock.json | 14 +++-----------
 package.json      | 10 ++++++++--
 2 files changed, 11 insertions(+), 13 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 917053f7..9a584748 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -381,9 +381,9 @@
 			"optional": true
 		},
 		"lodash": {
-			"version": "4.17.11",
-			"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.11.tgz",
-			"integrity": "sha512-cQKh8igo5QUhZ7lg38DYWAxMvjSAKG0A8wGSVimP07SIUEK2UO+arSRKbRZWtelMtN5V0Hkwh5ryOto/SshYIg=="
+			"version": "4.17.14",
+			"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.14.tgz",
+			"integrity": "sha512-mmKYbW3GLuJeX+iGP+Y7Gp1AiGHGbXHCOh/jZmrawMmsE7MS4znI3RL2FsjbqOyMayHInjOeykW7PEajUk1/xw=="
 		},
 		"lodash.get": {
 			"version": "4.4.2",
@@ -930,14 +930,6 @@
 				"through": "2"
 			}
 		},
-		"sql-ddl-sync": {
-			"version": "0.3.15",
-			"resolved": "https://registry.npmjs.org/sql-ddl-sync/-/sql-ddl-sync-0.3.15.tgz",
-			"integrity": "sha512-MoqSN2THqrKGvVuAvyORC6Q3lu9dGtjpFzG6RKDSN0cOs3JLJMl1JZuIw4UMlefHEe/Whzuc3+ZH0gTlVucBfA==",
-			"requires": {
-				"lodash": "4.17.11"
-			}
-		},
 		"sql-query": {
 			"version": "0.1.27",
 			"resolved": "https://registry.npmjs.org/sql-query/-/sql-query-0.1.27.tgz",
diff --git a/package.json b/package.json
index 03ed70e5..c05b3f71 100644
--- a/package.json
+++ b/package.json
@@ -65,9 +65,15 @@
     "bluebird": "3.5.1",
     "enforce": "0.1.7",
     "hat": "0.0.3",
-    "lodash": "^4.17.11",
+    "lodash": "^4.17.14",
     "path-is-absolute": "1.0.1",
-    "sql-ddl-sync": "0.3.15",
+    "sql-ddl-sync": {
+      "version": "git+https://github.com/dresende/node-sql-ddl-sync.git#43f8e0803302678b1304c176cfd7da4f6e667315",
+      "from": "git+https://github.com/dresende/node-sql-ddl-sync.git",
+      "requires": {
+        "lodash": "4.17.14"
+      }
+    },
     "sql-query": "0.1.27"
   },
   "devDependencies": {

From 86fbfeace6702d5c2bc970e4a2eca33c119fa10e Mon Sep 17 00:00:00 2001
From: Aaron Eppert <aeppert@gmail.com>
Date: Tue, 16 Jul 2019 17:10:20 -0400
Subject: [PATCH 3/4] lodash update

---
 package-lock.json | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/package-lock.json b/package-lock.json
index 9a584748..123031cc 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -82,6 +82,13 @@
 			"integrity": "sha512-H1qVYh1MYhEEFLsP97cVKqCGo7KfCyTt6uEWqsTBr9SO84oK9Uwbyd/yCW+6rKJLHksBNUVWZDAjfS+Ccx0Bbg==",
 			"requires": {
 				"lodash": "^4.17.11"
+			},
+			"dependencies": {
+				"lodash": {
+					"version": "4.17.14",
+					"resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.14.tgz",
+					"integrity": "sha512-mmKYbW3GLuJeX+iGP+Y7Gp1AiGHGbXHCOh/jZmrawMmsE7MS4znI3RL2FsjbqOyMayHInjOeykW7PEajUk1/xw=="
+				}
 			}
 		},
 		"balanced-match": {

From 1afe7aafd77b34d9efa7d7b2542d615286109329 Mon Sep 17 00:00:00 2001
From: Aaron Eppert <aeppert@gmail.com>
Date: Tue, 16 Jul 2019 17:34:18 -0400
Subject: [PATCH 4/4] Fixing syntax

---
 package.json | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

diff --git a/package.json b/package.json
index c05b3f71..03af43bb 100644
--- a/package.json
+++ b/package.json
@@ -67,13 +67,7 @@
     "hat": "0.0.3",
     "lodash": "^4.17.14",
     "path-is-absolute": "1.0.1",
-    "sql-ddl-sync": {
-      "version": "git+https://github.com/dresende/node-sql-ddl-sync.git#43f8e0803302678b1304c176cfd7da4f6e667315",
-      "from": "git+https://github.com/dresende/node-sql-ddl-sync.git",
-      "requires": {
-        "lodash": "4.17.14"
-      }
-    },
+    "sql-ddl-sync": "git+https://github.com/dresende/node-sql-ddl-sync.git",
     "sql-query": "0.1.27"
   },
   "devDependencies": {