feat(mojaloop/#3139)!: rework config to accept env variables for DB (#…

…132) * feat(mojaloop/#3139): rework config to accept env variables for DB * chore: audit * test * chore: test * chore: dep * chore: revert dep * chore: out of dependency hell? * chore: import * chore(snapshot): 13.1.0-snapshot.0 * chore: fix config name * chore(snapshot): 13.1.0-snapshot.1 * chore: set formats * chore: string * chore: string * chore: set nullable true * chore: update descriptions
mojaloop · Feb 28, 2023 · 6e6d5b3 · 6e6d5b3
1 parent d1ec451
commit 6e6d5b3
Show file tree

Hide file tree

Showing 25 changed files with 33,954 additions and 24,419 deletions.
diff --git a/.circleci/config.yml b/.circleci/config.yml
@@ -264,7 +264,7 @@ jobs:
           command: mkdir -p ./audit/results
       - run:
           name: Check for new npm vulnerabilities
-          command: npm run audit:check --silent -- --json > ./audit/results/auditResults.json
+          command: npm run audit:check -- -o json > ./audit/results/auditResults.json
       - store_artifacts:
           path: ./audit/results
           prefix: audit

diff --git a/.ncurc.js b/.ncurc.js
@@ -8,10 +8,6 @@ module.exports = {
     // Upgrading past redis@3 to the next major version introduces a lot of breaking changes.
     'redis',
     '@types/redis',
-    // Upgrading past jest|ts-jest|@types/jest@26 introduces a lot of breaking changes to current tests.
-    'jest',
-    'ts-jest',
-    '@types/jest',
     // Upgrading past commander@7 introduces a lot of breaking changes.
     'commander',
     // Upgrading sqlite past 5.0.2 seems to introduce sh: 1: node-pre-gyp: not found.

diff --git a/audit-ci.jsonc b/audit-ci.jsonc
@@ -0,0 +1,28 @@
+{
+  "$schema": "https://github.com/IBM/audit-ci/raw/main/docs/schema.json",
+  // audit-ci supports reading JSON, JSONC, and JSON5 config files.
+  // Only use one of ["low": true, "moderate": true, "high": true, "critical": true]
+  "moderate": true,
+  "allowlist": [
+    // NOTE: Please add as much information as possible to any items added to the allowList
+    // Currently no fixes available for the following
+    "GHSA-v88g-cgmw-v5xw", //widdershins>swagger2openapi>oas-validator>ajv
+    "GHSA-phwq-j96m-2c2q", //@mojaloop/central-services-shared>shins>ejs
+    "GHSA-282f-qqgm-c34q", //widdershins>swagger2openapi>better-ajv-errors>jsonpointer
+    "GHSA-qwph-4952-7xr6", //@mojaloop/central-services-health>@mojaloop/central-services-error-handling>@mojaloop/sdk-standard-components>jsonwebtoken
+    "GHSA-qwph-4952-7xr6", //@mojaloop/central-services-shared>@mojaloop/central-services-error-handling>@mojaloop/sdk-standard-components>jsonwebtoken
+    "GHSA-hjrf-2m68-5959", //@mojaloop/central-services-health>@mojaloop/central-services-error-handling>@mojaloop/sdk-standard-components>jsonwebtoken
+    "GHSA-hjrf-2m68-5959", //@mojaloop/central-services-shared>@mojaloop/central-services-error-handling>@mojaloop/sdk-standard-components>jsonwebtoken
+    "GHSA-6vfc-qv3f-vr6c", //widdershins>markdown-it
+    "GHSA-wc69-rhjr-hc9g", //@mojaloop/central-services-shared>@mojaloop/event-sdk>moment
+    "GHSA-g954-5hwp-pp24", //@mojaloop/central-services-shared>@mojaloop/event-sdk>protobufjs
+    "GHSA-rjqq-98f6-6j3r", //@mojaloop/central-services-shared>shins>sanitize-html
+    "GHSA-mjxr-4v3x-q3m4", //@mojaloop/central-services-shared>shins>sanitize-html
+    "GHSA-9qrh-qjmc-5w2p", //sqlite3
+    "GHSA-r628-mhmh-qjhw", //sqlite3>node-gyp>tar
+    "GHSA-9r2w-394v-53qc", //sqlite3>node-gyp>tar
+    "GHSA-5955-9wpr-37jh", //sqlite3>node-gyp>tar
+    "GHSA-3jfq-g458-7qm9", //sqlite3>node-gyp>tar
+    "GHSA-p9pc-299p-vxgp" //widdershins>yargs>yargs-parser
+  ]
+}