From c9c6ef27722e427604f9852b20a8d54b01a6a2db Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 13 Apr 2026 23:49:55 +0900
Subject: [PATCH] chore(deps): update dependency lodash to v4.18.1 [security]
 (#17278)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 package.json        |  2 +-
 pnpm-lock.yaml      | 18 +++++++++---------
 pnpm-workspace.yaml |  2 ++
 3 files changed, 12 insertions(+), 10 deletions(-)

diff --git a/package.json b/package.json
index 1769f21936..b33320a84b 100644
--- a/package.json
+++ b/package.json
@@ -86,7 +86,7 @@
 		"overrides": {
 			"@aiscript-dev/aiscript-languageserver": "-",
 			"chokidar": "5.0.0",
-			"lodash": "4.17.23"
+			"lodash": "4.18.1"
 		},
 		"ignoredBuiltDependencies": [
 			"@sentry-internal/node-cpu-profiler",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 2cc581e485..b5fc02de04 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -7,7 +7,7 @@ settings:
 overrides:
   '@aiscript-dev/aiscript-languageserver': '-'
   chokidar: 5.0.0
-  lodash: 4.17.23
+  lodash: 4.18.1
 
 importers:
 
@@ -8218,8 +8218,8 @@ packages:
   lodash.uniq@4.5.0:
     resolution: {integrity: sha512-xfBaXQd9ryd9dlSDvnvI0lvxfLJlYAZzXomUYzLKtUeOQvOP5piqAWuGtrhWeqaXK9hhoM/iyJc5AV+XfsX3HQ==}
 
-  lodash@4.17.23:
-    resolution: {integrity: sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==}
+  lodash@4.18.1:
+    resolution: {integrity: sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q==}
 
   log-symbols@4.1.0:
     resolution: {integrity: sha512-8XPvpAA8uyhfteu8pIvQxpJZ7SYYdpUivZpGy6sFsBuKRY/7rQGavedeB8aK+Zkyq6upMFVL/9AW6vOYzfRyLg==}
@@ -13205,7 +13205,7 @@ snapshots:
       '@rushstack/terminal': 0.22.4(@types/node@24.12.2)
       '@rushstack/ts-command-line': 5.3.4(@types/node@24.12.2)
       diff: 8.0.2
-      lodash: 4.17.23
+      lodash: 4.18.1
       minimatch: 10.2.3
       resolve: 1.22.11
       semver: 7.5.4
@@ -15222,7 +15222,7 @@ snapshots:
       chalk: 3.0.0
       css.escape: 1.5.1
       dom-accessibility-api: 0.6.3
-      lodash: 4.17.23
+      lodash: 4.18.1
       redent: 3.0.0
 
   '@testing-library/jest-dom@6.9.1':
@@ -16206,7 +16206,7 @@ snapshots:
       graceful-fs: 4.2.11
       is-stream: 2.0.1
       lazystream: 1.0.1
-      lodash: 4.17.23
+      lodash: 4.18.1
       normalize-path: 3.0.0
       readable-stream: 4.7.0
 
@@ -17154,7 +17154,7 @@ snapshots:
       hasha: 5.2.2
       is-installed-globally: 0.4.0
       listr2: 3.14.0(enquirer@2.4.1)
-      lodash: 4.17.23
+      lodash: 4.18.1
       log-symbols: 4.1.0
       minimist: 1.2.8
       ospath: 1.2.2
@@ -19611,7 +19611,7 @@ snapshots:
 
   lodash.uniq@4.5.0: {}
 
-  lodash@4.17.23: {}
+  lodash@4.18.1: {}
 
   log-symbols@4.1.0:
     dependencies:
@@ -22942,7 +22942,7 @@ snapshots:
     dependencies:
       axios: 1.13.6(debug@4.4.3)
       joi: 18.0.2
-      lodash: 4.17.23
+      lodash: 4.18.1
       minimist: 1.2.8
       rxjs: 7.8.2
     transitivePeerDependencies:
diff --git a/pnpm-workspace.yaml b/pnpm-workspace.yaml
index 412d8c4465..040c45bcdd 100644
--- a/pnpm-workspace.yaml
+++ b/pnpm-workspace.yaml
@@ -38,3 +38,5 @@ minimumReleaseAgeExclude:
   - rolldown # 脆弱性対応。そのうち消す
   - '@rolldown/*' # 脆弱性対応。そのうち消す
   - vite # 脆弱性対応。そのうち消す
+  # Renovate security update: lodash@4.18.1
+  - lodash@4.18.1