diff --git a/.snyk b/.snyk index a0d672f3d1..08e6b0f285 100644 --- a/.snyk +++ b/.snyk @@ -1,5 +1,5 @@ # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.7.0 +version: v1.7.1 ignore: {} # patches apply the minimum changes required to fix a vulnerability patch: @@ -79,3 +79,6 @@ patch: 'npm:uglify-js:20150824': - jade > transformers > uglify-js: patched: '2016-07-29T23:00:15.905Z' + 'npm:ms:20170412': + - compression > debug > ms: + patched: '2017-05-25T00:47:03.990Z' diff --git a/package.json b/package.json index 0a5fdf7f2f..cc9a5910f7 100644 --- a/package.json +++ b/package.json @@ -123,7 +123,7 @@ "reselect": "^3.0.0", "rx": "~4.0.8", "sanitize-html": "^1.11.1", - "snyk": "^1.19.1", + "snyk": "^1.30.1", "store": "https://github.com/berkeleytrue/store.js.git#feature/noop-server", "uuid": "^3.0.1", "validator": "^6.0.0"