From fbfea88f38d0d92f1b14847c8b8b4d9c30344d6c Mon Sep 17 00:00:00 2001
From: Clark Du <clark.duxin@gmail.com>
Date: Wed, 1 Aug 2018 20:48:29 +0100
Subject: [PATCH] fix: upgrade vue for fixing ssr vulnerability

---
 package.json | 2 +-
 yarn.lock    | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package.json b/package.json
index d44e64fdff..71455f565a 100644
--- a/package.json
+++ b/package.json
@@ -117,7 +117,7 @@
     "uglifyjs-webpack-plugin": "^1.2.7",
     "upath": "^1.1.0",
     "url-loader": "^1.0.1",
-    "vue": "^2.5.16",
+    "vue": "^2.5.17",
     "vue-loader": "^15.2.2",
     "vue-meta": "^1.5.2",
     "vue-router": "^3.0.1",
diff --git a/yarn.lock b/yarn.lock
index 80e6f02e2a..233cc396aa 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -7582,9 +7582,9 @@ vue-template-es2015-compiler@^1.6.0:
   version "1.6.0"
   resolved "https://registry.yarnpkg.com/vue-template-es2015-compiler/-/vue-template-es2015-compiler-1.6.0.tgz#dc42697133302ce3017524356a6c61b7b69b4a18"
 
-vue@^2.5.16:
-  version "2.5.16"
-  resolved "https://registry.yarnpkg.com/vue/-/vue-2.5.16.tgz#07edb75e8412aaeed871ebafa99f4672584a0085"
+vue@^2.5.17:
+  version "2.5.17"
+  resolved "https://registry.yarnpkg.com/vue/-/vue-2.5.17.tgz#0f8789ad718be68ca1872629832ed533589c6ada"
 
 vuex@^3.0.1:
   version "3.0.1"