From e127e19bbaa18ff611358aa4ca691b64275bb368 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 19 Jun 2018 01:08:20 +0000 Subject: [PATCH] fix: .snyk & package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:hoek:20180212 --- .snyk | 14 ++++++++++++++ package.json | 10 ++++++++-- 2 files changed, 22 insertions(+), 2 deletions(-) create mode 100644 .snyk diff --git a/.snyk b/.snyk new file mode 100644 index 0000000..172153f --- /dev/null +++ b/.snyk @@ -0,0 +1,14 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.12.0 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + 'npm:hoek:20180212': + - plumes > gulp-less > less > request > hawk > hoek: + patched: '2018-06-19T01:08:18.936Z' + - plumes > gulp-less > less > request > hawk > boom > hoek: + patched: '2018-06-19T01:08:18.936Z' + - plumes > gulp-less > less > request > hawk > sntp > hoek: + patched: '2018-06-19T01:08:18.936Z' + - plumes > gulp-less > less > request > hawk > cryptiles > boom > hoek: + patched: '2018-06-19T01:08:18.936Z' diff --git a/package.json b/package.json index c8c6576..8307c71 100644 --- a/package.json +++ b/package.json @@ -21,6 +21,12 @@ "allons-y-gulp": "^1.0.3", "allons-y-jquery": "^1.0.0", "allons-y-ractive": "^1.0.1", - "plumes": "^1.6.7" - } + "plumes": "^1.6.7", + "snyk": "^1.83.0" + }, + "scripts": { + "snyk-protect": "snyk protect", + "prepare": "npm run snyk-protect" + }, + "snyk": true }