diff --git a/package-lock.json b/package-lock.json
index f573aaf..144db63 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -519,9 +519,9 @@
       }
     },
     "lodash": {
-      "version": "4.17.15",
-      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.15.tgz",
-      "integrity": "sha512-8xOcRHvCjnocdS5cpwXQXVzmmh5e5+saE2QGoeQmbKmRS6J3VQppPOIt0MnmE+4xlZoumy0GPG0D0MVIQbNA1A=="
+      "version": "4.17.19",
+      "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.19.tgz",
+      "integrity": "sha512-JNvd8XER9GQX0v2qJgsaN/mzFCNA5BRe/j8JN9d+tWyGLSodKQHKFicdwNYzWwI3wjRnaKPsGj1XkBjx/F96DQ=="
     },
     "lodash.flattendeep": {
       "version": "4.4.0",
diff --git a/package.json b/package.json
index 4902e73..ad37f59 100644
--- a/package.json
+++ b/package.json
@@ -29,7 +29,7 @@
     "eccrypto": "^1.1.1",
     "express": "^4.16.4",
     "express-promise-router": "^3.0.3",
-    "lodash": "^4.17.15",
+    "lodash": "^4.17.19",
     "merkle-tools": "^1.4.0",
     "morgan": "^1.9.1",
     "request": "^2.88.0",