From c59bd8e5fd975246d6104757909e891dd518b24b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 May 2020 10:37:50 +0530 Subject: [PATCH 1/2] fix: .snyk & package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- .snyk | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/.snyk b/.snyk index 1262891..6b3534f 100644 --- a/.snyk +++ b/.snyk @@ -1,8 +1,11 @@ # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.13.5 +version: v1.14.1 ignore: {} # patches apply the minimum changes required to fix a vulnerability patch: SNYK-JS-LODASH-450202: - yup > lodash: patched: '2019-07-04T05:07:44.069Z' + SNYK-JS-LODASH-567746: + - yup > lodash: + patched: '2020-05-01T05:07:48.225Z' From b6d0403d9bf195d9bff49b3195d4488a57bfc7ce Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 May 2020 10:37:51 +0530 Subject: [PATCH 2/2] fix: .snyk & package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- package.json | 82 ++++++++++++++++++++++++++-------------------------- 1 file changed, 41 insertions(+), 41 deletions(-) diff --git a/package.json b/package.json index a884511..6974427 100644 --- a/package.json +++ b/package.json @@ -1,43 +1,43 @@ { - "name": "@audentio/utils", - "version": "4.4.1", - "description": "Audentio front-end Javascript utilities", - "repository": { - "type": "git", - "url": "git+ssh://git@github.com/Audentio/js-utils.git" - }, - "scripts": { - "build": "tsc", - "release": "release-it", - "snyk-protect": "snyk protect", - "prepublish": "npm run snyk-protect" - }, - "author": "Audentio", - "license": "ISC", - "bugs": { - "url": "https://github.com/Audentio/js-utils/issues" - }, - "homepage": "https://github.com/Audentio/js-utils#readme", - "devDependencies": { - "@audentio/eslint-config-standard": "2.3.0", - "@babel/core": "7.8.4", - "@babel/plugin-proposal-decorators": "7.8.3", - "@babel/preset-env": "7.8.4", - "@babel/preset-react": "7.8.3", - "@babel/preset-stage-0": "7.8.3", - "@babel/preset-typescript": "7.8.3", - "babel-core": "^7.0.0-0", - "babel-jest": "25.1.0", - "eslint-config-prettier": "^6.10.0", - "node-watch": "0.6.3", - "prettier": "^1.19.1", - "release-it": "^12.4.3", - "snyk": "^1.290.1", - "typescript": "^3.7.5" - }, - "dependencies": { - "query-string": "^6.10.1", - "yup": "^0.28.1" - }, - "snyk": true + "name": "@audentio/utils", + "version": "4.4.1", + "description": "Audentio front-end Javascript utilities", + "repository": { + "type": "git", + "url": "git+ssh://git@github.com/Audentio/js-utils.git" + }, + "scripts": { + "build": "tsc", + "release": "release-it", + "snyk-protect": "snyk protect", + "prepublish": "yarn run snyk-protect" + }, + "author": "Audentio", + "license": "ISC", + "bugs": { + "url": "https://github.com/Audentio/js-utils/issues" + }, + "homepage": "https://github.com/Audentio/js-utils#readme", + "devDependencies": { + "@audentio/eslint-config-standard": "2.3.0", + "@babel/core": "7.8.4", + "@babel/plugin-proposal-decorators": "7.8.3", + "@babel/preset-env": "7.8.4", + "@babel/preset-react": "7.8.3", + "@babel/preset-stage-0": "7.8.3", + "@babel/preset-typescript": "7.8.3", + "babel-core": "^7.0.0-0", + "babel-jest": "25.1.0", + "eslint-config-prettier": "^6.10.0", + "node-watch": "0.6.3", + "prettier": "^1.19.1", + "release-it": "^12.4.3", + "typescript": "^3.7.5" + }, + "dependencies": { + "query-string": "^6.10.1", + "yup": "^0.28.1", + "snyk": "^1.316.1" + }, + "snyk": true }