diff --git a/.snyk b/.snyk new file mode 100644 index 0000000..d745d81 --- /dev/null +++ b/.snyk @@ -0,0 +1,10 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.13.5 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + SNYK-JS-HTTPSPROXYAGENT-469131: + - snyk > proxy-agent > https-proxy-agent: + patched: '2019-10-04T22:12:17.037Z' + - snyk > proxy-agent > pac-proxy-agent > https-proxy-agent: + patched: '2019-10-04T22:12:17.037Z' diff --git a/package.json b/package.json index 140bb52..7c332f1 100644 --- a/package.json +++ b/package.json @@ -10,7 +10,9 @@ "dev": "run-p watch server", "lint": "eslint .", "lint-fix": "eslint . --fix", - "check-vulnerabilities": "snyk test" + "check-vulnerabilities": "snyk test", + "snyk-protect": "snyk protect", + "prepublish": "npm run snyk-protect" }, "dependencies": { "babel-eslint": "^8.2.2", @@ -24,7 +26,8 @@ "mustache-express": "^1.2.5", "node-schedule": "^1.3.0", "solar-calc": "^1.1.0", - "sqlite3": "^3.1.13" + "sqlite3": "^3.1.13", + "snyk": "^1.231.0" }, "devDependencies": { "babel-cli": "^6.26.0", @@ -37,9 +40,9 @@ "eslint": "^4.18.2", "eslint-plugin-security": "^1.4.0", "npm-run-all": "^4.1.2", - "snyk": "^1.69.10", "watchify": "^3.10.0" }, "author": "Felix Gonschorek ", - "license": "ISC" + "license": "ISC", + "snyk": true }