From d0ebffb18b5f46c61bcf75a58939c8ef2fa58d73 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Apr 2026 03:26:41 +0000
Subject: [PATCH] build(deps): bump lodash from 4.17.23 to 4.18.1

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.23...4.18.1)

---
updated-dependencies:
- dependency-name: lodash
  dependency-version: 4.18.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json | 2 +-
 yarn.lock    | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index 1f94c87..ee09d38 100644
--- a/package.json
+++ b/package.json
@@ -18,7 +18,7 @@
     "ali-oss": "^6.1.0",
     "debug": "^2.6.1",
     "globby": "^6.1.0",
-    "lodash": "^4.17.23",
+    "lodash": "^4.18.1",
     "ora": "^1.1.0",
     "p-all": "^2.0.0",
     "rc": "^1.1.7"
diff --git a/yarn.lock b/yarn.lock
index a4e1aa3..3cab6dd 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -525,9 +525,9 @@ levn@~0.3.0:
     prelude-ls "~1.1.2"
     type-check "~0.3.2"
 
-lodash@^4.17.23:
-  version "4.17.23"
-  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.17.23.tgz#f113b0378386103be4f6893388c73d0bde7f2c5a"
+lodash@^4.18.1:
+  version "4.18.1"
+  resolved "https://registry.yarnpkg.com/lodash/-/lodash-4.18.1.tgz#ff2b66c1f6326d59513de2407bf881439812771c"
 
 log-symbols@^2.1.0:
   version "2.2.0"