diff --git a/package-lock.json b/package-lock.json
index 6906cbb..da42fea 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1376,9 +1376,9 @@
       }
     },
     "lodash": {
-      "version": "3.6.0",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-3.6.0.tgz",
-      "integrity": "sha1-Umao9J3Zib5Pn2gbbyoMVShdDZo="
+      "version": "4.17.21",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz",
+      "integrity": "sha512-v2kDEe57lecTulaDIuNTPy3Ry4gLGJ6Z1O3vE1krgXZNrsQ+LFTGHVxVjcXPs17LhbZVGedAJv8XZ1tvj5FvSg=="
     },
     "lodash._baseslice": {
       "version": "4.0.0",
@@ -2605,6 +2605,14 @@
       "dev": true,
       "requires": {
         "lodash": "^3.5.0"
+      },
+      "dependencies": {
+        "lodash": {
+          "version": "3.10.1",
+          "resolved": "https://registry.npmjs.org/lodash/-/lodash-3.10.1.tgz",
+          "integrity": "sha1-W/Rejkm6QYnhfUgnid/RW9FAt7Y=",
+          "dev": true
+        }
       }
     },
     "xmldom": {
diff --git a/package.json b/package.json
index f4cb769..8a81693 100644
--- a/package.json
+++ b/package.json
@@ -29,7 +29,7 @@
   ],
   "dependencies": {
     "argparser": "0.2",
-    "lodash": "3.6.0",
+    "lodash": "4.17.21",
     "mustache": "2.2.1",
     "q": "1.2.0",
     "request": "^2.88.0",