From c86e22104829ec3833fe36a3e634b2e90b112735 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 30 Mar 2021 06:05:08 +0000
Subject: [PATCH] fix: superset/assets/package.json &
 superset/assets/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984
---
 superset/assets/package-lock.json | 6 +++---
 superset/assets/package.json      | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/superset/assets/package-lock.json b/superset/assets/package-lock.json
index 8d3f8ac26fd8e..4bf8f5ac59cb9 100644
--- a/superset/assets/package-lock.json
+++ b/superset/assets/package-lock.json
@@ -21345,9 +21345,9 @@
       }
     },
     "underscore": {
-      "version": "1.9.1",
-      "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.9.1.tgz",
-      "integrity": "sha512-5/4etnCkd9c8gwgowi5/om/mYO5ajCaOgdzj/oW+0eQV9WxKBDZw5+ycmKmeaTXjInS/W0BzpGLo2xR2aBwZdg=="
+      "version": "1.12.1",
+      "resolved": "https://registry.npmjs.org/underscore/-/underscore-1.12.1.tgz",
+      "integrity": "sha512-hEQt0+ZLDVUMhebKxL4x1BTtDY7bavVofhZ9KZ4aI26X9SRaE+Y3m83XUL1UP2jn8ynjndwCCpEHdUG+9pP1Tw=="
     },
     "unherit": {
       "version": "1.1.1",
diff --git a/superset/assets/package.json b/superset/assets/package.json
index f314f6a6848cf..6345ae237e1d8 100644
--- a/superset/assets/package.json
+++ b/superset/assets/package.json
@@ -140,7 +140,7 @@
     "redux-thunk": "^2.1.0",
     "redux-undo": "^1.0.0-beta9-9-7",
     "shortid": "^2.2.6",
-    "underscore": "^1.8.3",
+    "underscore": "^1.12.1",
     "urijs": "^1.18.10",
     "viewport-mercator-project": "^6.1.1"
   },