[Snyk] Fix for 1 vulnerabilities (#56)

* fix: .snyk & package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:semver:20150403 * fix: .snyk & package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:semver:20150403 * Update yarn.lock Co-authored-by: snyk-bot <[email protected]> Co-authored-by: Ian K Smith <[email protected]>
magiclabs · Apr 22, 2020 · 5472d5b · 5472d5b
1 parent 24228c3
commit 5472d5b
Show file tree

Hide file tree

Showing 3 changed files with 1,280 additions and 52 deletions.
diff --git a/.snyk b/.snyk
@@ -0,0 +1,10 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.14.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+ 'npm:semver:20150403':
+ - react-native-webview > rnpm-plugin-windows > npm-registry > semver:
+ patched: '2020-04-22T19:51:02.443Z'
+ - react-native-webview > rnpm-plugin-windows > npm-registry > licenses > npm-registry > semver:
+ patched: '2020-04-22T19:51:02.443Z'
diff --git a/package.json b/package.json
@@ -19,11 +19,14 @@
  "clean": "npm-run-all -s clean:*",
  "clean:test-artifacts": "rimraf coverage && rimraf .nyc_output",
  "clean:build": "rimraf dist",
- "clean_node_modules": "rimraf node_modules"
+ "clean_node_modules": "rimraf node_modules",
+ "snyk-protect": "snyk protect",
+ "prepare": "yarn run snyk-protect"
  },
  "dependencies": {
  "react-native-webview": "^8.1.2",
- "whatwg-url": "^8.0.0"
+ "whatwg-url": "^8.0.0",
+ "snyk": "^1.309.0"
  },
  "devDependencies": {
  "@ikscodes/browser-env": "~0.3.1",
@@ -99,5 +102,6 @@
  "html",
  "lcov"
  ]
- }
+ },
+ "snyk": true
 }