Fix Lodash isArray deprecation

[damassi]

When installing the latest danger, I noticed this in the console output:

Replaces lodash.isarray with native implementation.

[DangerCI]

🎉

Generated by 🚫 dangerJS

[codecov-io]

Codecov Report

Merging #205 into master will increase coverage by 64.93%.
The diff coverage is 100%.

@@             Coverage Diff             @@
##           master     #205       +/-   ##
===========================================
+ Coverage       0%   64.93%   +64.93%     
===========================================
  Files           4       32       +28     
  Lines         104      733      +629     
  Branches       16      102       +86     
===========================================
+ Hits            0      476      +476     
- Misses        104      257      +153

Impacted Files	Coverage Δ
source/platforms/github/GitHubGit.ts	98.21% <100%> (ø)
source/runner/Dangerfile.ts	100% <0%> (ø)
source/platforms/GitHub.ts	37.2% <0%> (ø)
source/platforms/platform.ts	72.72% <0%> (ø)
source/commands/utils/file-utils.ts	100% <0%> (ø)
source/runner/DangerUtils.ts	100% <0%> (ø)
source/api/fetch.ts	14.28% <0%> (ø)
source/ci_source/providers/index.ts	100% <0%> (ø)
source/ci_source/providers/Surf.ts	64.7% <0%> (ø)
source/ci_source/get_ci_source.ts	79.16% <0%> (ø)
... and 19 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 749728c...6604d78. Read the comment docs.

[macklinu]

Thanks for your contribution, @damassi! I have a couple questions that I feel more confident letting @orta answer, but this change looks good to me. 🕺 🎉

[macklinu]

I think we should be safe using the native Array.isArray() instead of that deprecated lodash package. 👍

[macklinu]

Could you revert this change please? Unless we are good to ship this in a patch release - cc @orta

[macklinu]

Good call, I think this was shipped in 0.14.1.

[macklinu]

Looking for confirmation from @orta on shipping 0.14.2 or holding off on it for anything else to keep this changelog message here. Otherwise we usually add changelog messages right below the // Add your own contribution below line and then add the version number we are shipping to the changelog as we package up a release.

[damassi]

Ah, I see -- danger said to update the changelog and so I followed the format as it was there. It might be good to provide a little more direction in terms of version numbers, changelog, etc.

[macklinu]

Forgot to add, Danger commented on the PR requesting that yarn install is run (for dependency additions/removals to keep yarn.lock in sync with package.json). Could you please run that locally and push up a commit with the changes to yarn.lock? 🙂

[damassi]

Updated and rebased. It's odd -- I ran a yarn install first thing after pulling down the package, but I had to rm it and reinstall packages before it would update.

[orta]

Ah yeah, the version/changelog thing - again sorry about that, :D

I got stuck on a particularly long PR, which I thought I could get finished by the weekend ( #194 ) but inevitably I couldn't.

IMO it makes sense to be more verbose in the changelog about saying above the latest released version. 👍

[orta]

Shipping 0.14.2 sounds 👍

[orta]

@damassi with respect to the lockfile, you would have needed to run yarn remove lodash-isarray this would have removed the module then only re-created the dependency locks for anything related to it.

In deleting and re-creating it from scratch you've updated hundreds of dependencies in the stack, which is why it's a ~1000 LOC diff.

I'm ok with this, after eyeing it over, but ideally next time we should be a bit more strict about smaller lock file changes.

[orta]

Alright, I've shipped that - and all other PRs as 0.14.2

I've also updated the notice on the CHANGELOG to be more specific in fde4c54

[damassi]

Ah sorry about that! I wasn't aware of yarn remove <package>. Noted 👍