diff --git a/.snyk b/.snyk new file mode 100644 index 0000000..22eed24 --- /dev/null +++ b/.snyk @@ -0,0 +1,22 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.12.0 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + 'npm:hoek:20180212': + - node-sass > request > hawk > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > request > hawk > boom > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > request > hawk > sntp > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > request > hawk > cryptiles > boom > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > node-gyp > request > hawk > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > node-gyp > request > hawk > boom > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > node-gyp > request > hawk > sntp > hoek: + patched: '2018-06-22T06:50:55.805Z' + - node-sass > node-gyp > request > hawk > cryptiles > boom > hoek: + patched: '2018-06-22T06:50:55.805Z' diff --git a/package.json b/package.json index 853655d..526a846 100644 --- a/package.json +++ b/package.json @@ -8,7 +8,9 @@ "start": "webpack-dev-server --progress --profile --colors", "lint": "eslint --ext js --ext jsx src || exit 0", "dev": " webpack-dashboard -- webpack-dev-server --progress --profile --colors", - "test": "find ./src/tests -name '*_test.js' | xargs mocha -R spec --require babel-register param" + "test": "find ./src/tests -name '*_test.js' | xargs mocha -R spec --require babel-register param", + "snyk-protect": "snyk protect", + "prepublish": "npm run snyk-protect" }, "repository": { "type": "git", @@ -30,7 +32,8 @@ "react-loading": "^0.1.4", "react-search-input": "^0.11.2", "react-select": "^1.0.0-rc.3", - "sass-loader": "^6.0.2" + "sass-loader": "^6.0.2", + "snyk": "^1.83.0" }, "devDependencies": { "babel-core": "^6.23.1", @@ -62,5 +65,6 @@ "webpack-cleanup-plugin": "^0.4.2", "webpack-dashboard": "^0.3.0", "webpack-dev-server": "^2.4.1" - } + }, + "snyk": true }