From 957165274fd95555cf596044967aab307c8dd581 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 24 Jan 2026 14:04:09 +0000
Subject: [PATCH] Bump lodash and pdf2json

Removes [lodash](https://github.com/lodash/lodash). It's no longer used after updating ancestor dependency [pdf2json](https://github.com/modesty/pdf2json). These dependencies need to be updated together.


Removes `lodash`

Updates `pdf2json` from 1.1.8 to 4.0.2
- [Release notes](https://github.com/modesty/pdf2json/releases)
- [Commits](https://github.com/modesty/pdf2json/commits/v4.0.2)

---
updated-dependencies:
- dependency-name: lodash
  dependency-version:
  dependency-type: indirect
- dependency-name: pdf2json
  dependency-version: 4.0.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package-lock.json | 69 +++++++++++++++++------------------------------
 package.json      |  2 +-
 2 files changed, 25 insertions(+), 46 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 6ca1c08..f9dd400 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,57 +1,36 @@
 {
   "name": "pdf-reader",
   "version": "1.0.0",
-  "lockfileVersion": 1,
+  "lockfileVersion": 3,
   "requires": true,
-  "dependencies": {
-    "pdf2json": {
-      "version": "1.1.8",
-      "resolved": "https://registry.npmjs.org/pdf2json/-/pdf2json-1.1.8.tgz",
-      "integrity": "sha512-ka7l/w+4FM5vdI8X9UihxqdTispanZ72ZKsFdghwpBaHcIhXeWCO0qs81P9modFZHf7s4znf0sxc5k6wk6L4Og==",
-      "requires": {
-        "async": "^2.0.1",
-        "lodash": "^4.15.0",
-        "optimist": "^0.6.1",
-        "xmldom": "^0.1.22"
-      },
+  "packages": {
+    "": {
+      "version": "1.0.0",
+      "license": "ISC",
       "dependencies": {
-        "async": {
-          "version": "2.0.1",
-          "bundled": true,
-          "requires": {
-            "lodash": "^4.8.0"
-          }
-        },
-        "lodash": {
-          "version": "4.15.0",
-          "bundled": true
-        },
-        "minimist": {
-          "version": "0.0.10",
-          "bundled": true
-        },
-        "optimist": {
-          "version": "0.6.1",
-          "bundled": true,
-          "requires": {
-            "minimist": "~0.0.1",
-            "wordwrap": "~0.0.2"
-          }
-        },
-        "wordwrap": {
-          "version": "0.0.3",
-          "bundled": true
-        },
-        "xmldom": {
-          "version": "0.1.22",
-          "bundled": true
-        }
+        "pdf2json": "^4.0.2",
+        "xmlhttprequest": "^1.8.0"
       }
     },
-    "xmlhttprequest": {
+    "node_modules/pdf2json": {
+      "version": "4.0.2",
+      "resolved": "https://registry.npmjs.org/pdf2json/-/pdf2json-4.0.2.tgz",
+      "integrity": "sha512-iiRSuRmLihoEJ4YGkoqSq3/r4MR0OmkMTYDda0Pq7DAWqJwMylTilXu46T16gfS3DUp3fhiVuz7NtRMbk3uBhw==",
+      "license": "Apache-2.0",
+      "bin": {
+        "pdf2json": "bin/pdf2json.js"
+      },
+      "engines": {
+        "node": ">=20.18.0"
+      }
+    },
+    "node_modules/xmlhttprequest": {
       "version": "1.8.0",
       "resolved": "https://registry.npmjs.org/xmlhttprequest/-/xmlhttprequest-1.8.0.tgz",
-      "integrity": "sha1-Z/4HXFwk/vOfnWX197f+dRcZaPw="
+      "integrity": "sha1-Z/4HXFwk/vOfnWX197f+dRcZaPw=",
+      "engines": {
+        "node": ">=0.4.0"
+      }
     }
   }
 }
diff --git a/package.json b/package.json
index 8f8929b..f3e4674 100644
--- a/package.json
+++ b/package.json
@@ -9,7 +9,7 @@
   "author": "",
   "license": "ISC",
   "dependencies": {
-    "pdf2json": "^1.1.8",
+    "pdf2json": "^4.0.2",
     "xmlhttprequest": "^1.8.0"
   }
 }