From 70f554d0452b793ffaf1b409a817a0e06ae0e8e6 Mon Sep 17 00:00:00 2001 From: Snyk bot Date: Tue, 30 May 2017 19:43:52 +0100 Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities (#15039) The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:ms:20170412 Latest report for freecodecamp/freecodecamp: https://snyk.io/test/github/freecodecamp/freecodecamp --- .snyk | 5 ++++- package.json | 2 +- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/.snyk b/.snyk index a0d672f3d1..08e6b0f285 100644 --- a/.snyk +++ b/.snyk @@ -1,5 +1,5 @@ # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.7.0 +version: v1.7.1 ignore: {} # patches apply the minimum changes required to fix a vulnerability patch: @@ -79,3 +79,6 @@ patch: 'npm:uglify-js:20150824': - jade > transformers > uglify-js: patched: '2016-07-29T23:00:15.905Z' + 'npm:ms:20170412': + - compression > debug > ms: + patched: '2017-05-25T00:47:03.990Z' diff --git a/package.json b/package.json index 0a5fdf7f2f..cc9a5910f7 100644 --- a/package.json +++ b/package.json @@ -123,7 +123,7 @@ "reselect": "^3.0.0", "rx": "~4.0.8", "sanitize-html": "^1.11.1", - "snyk": "^1.19.1", + "snyk": "^1.30.1", "store": "https://github.com/berkeleytrue/store.js.git#feature/noop-server", "uuid": "^3.0.1", "validator": "^6.0.0"