NPM audit reports nw-builder as insecure

[ea2973929]

See https://david-dm.org/nwjs/nw-builder

The problematic package is lodash and there are new versions available that can easily fix this.

npm audit with even low security problems will fail our builds (because npm audit does not distinguish between different levels) so an updated nw-builder would be very welcome.

[kessler]

@ea2973929 I looked into this. It seems there is a potential for breaking changes as a result of the update. If you could submit a PR it would be great.

[vankasteelj]

This seems pretty straightforward, as the issue is platform-overrides module by @adam-lynch. PR there and/or port the code here.

I would rather have the code ported here, as it will void the issue with duplicate lodash (used here and there)

[kessler]

@vankasteelj could you submit a PR ?

[vankasteelj]

Yeah probably, but idk when I'll have the time, monday maybe

[vankasteelj]

if @adam-lynch is there, adam-lynch/platform-overrides#6

I'll PR a port to nw-builder as well

[vankasteelj]

Ok, PR done