From bb830765949a0de1db65d6cadd7b7f48cbdc554f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 May 2020 06:49:18 +0300 Subject: [PATCH] fix: package.json, package-lock.json & .snyk to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- .snyk | 10 ++++++++++ 1 file changed, 10 insertions(+) create mode 100644 .snyk diff --git a/.snyk b/.snyk new file mode 100644 index 00000000..94d32bb6 --- /dev/null +++ b/.snyk @@ -0,0 +1,10 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.14.1 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + SNYK-JS-LODASH-567746: + - node-sass > sass-graph > lodash: + patched: '2020-05-01T03:48:12.417Z' + - node-sass > gaze > globule > lodash: + patched: '2020-05-01T03:48:12.417Z'