changes from review

Author: mruoss

dist/index.js

@@ -5700,7 +5700,7 @@ function coerce (version, options) {
   var undefined;
 
   /** Used as the semantic version number. */
-  var VERSION = '4.17.23';
+  var VERSION = '4.17.21';
 
   /** Used as the size to enable large array optimizations. */
   var LARGE_ARRAY_SIZE = 200;
@@ -9454,7 +9454,7 @@ function coerce (version, options) {
           if (isArray(iteratee)) {
             return function(value) {
               return baseGet(value, iteratee.length === 1 ? iteratee[0] : iteratee);
-            };
+            }
           }
           return iteratee;
         });
@@ -10058,47 +10058,8 @@ function coerce (version, options) {
      */
     function baseUnset(object, path) {
       path = castPath(path, object);
-
-      // Prevent prototype pollution, see: https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg
-      var index = -1,
-          length = path.length;
-
-      if (!length) {
-        return true;
-      }
-
-      var isRootPrimitive = object == null || (typeof object !== 'object' && typeof object !== 'function');
-
-      while (++index < length) {
-        var key = path[index];
-
-        // skip non-string keys (e.g., Symbols, numbers)
-        if (typeof key !== 'string') {
-          continue;
-        }
-
-        // Always block "__proto__" anywhere in the path if it's not expected
-        if (key === '__proto__' && !hasOwnProperty.call(object, '__proto__')) {
-          return false;
-        }
-
-        // Block "constructor.prototype" chains
-        if (key === 'constructor' &&
-            (index + 1) < length &&
-            typeof path[index + 1] === 'string' &&
-            path[index + 1] === 'prototype') {
-
-          // Allow ONLY when the path starts at a primitive root, e.g., _.unset(0, 'constructor.prototype.a')
-          if (isRootPrimitive && index === 0) {
-            continue;
-          }
-
-          return false;
-        }
-      }
-
-      var obj = parent(object, path);
-      return obj == null || delete obj[toKey(last(path))];
+      object = parent(object, path);
+      return object == null || delete object[toKey(last(path))];
     }
 
     /**
@@ -30008,7 +29969,6 @@ async function main() {
   checkOtpArchitecture()
 
   const versionFilePath = getInput('version-file', false)
-
   let versions
   if (versionFilePath) {
     if (!isStrictVersion()) {