diff --git a/.snyk b/.snyk index 7b2ca0d..960ad76 100644 --- a/.snyk +++ b/.snyk @@ -1,8 +1,31 @@ # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.12.0 +version: v1.13.5 ignore: {} # patches apply the minimum changes required to fix a vulnerability patch: 'npm:lodash:20180130': - node-internet-radio > lodash: patched: '2018-07-03T03:10:43.806Z' + SNYK-JS-LODASH-450202: + - snyk > snyk-nodejs-lockfile-parser > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > snyk-nuget-plugin > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > @snyk/dep-graph > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > inquirer > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > snyk-config > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > snyk-mvn-plugin > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > snyk-go-plugin > graphlib > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > snyk-nodejs-lockfile-parser > graphlib > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > snyk-php-plugin > @snyk/composer-lockfile-parser > lodash: + patched: '2019-07-04T05:18:17.355Z' + - snyk > @snyk/dep-graph > graphlib > lodash: + patched: '2019-07-04T05:18:17.355Z' diff --git a/package.json b/package.json index 6d8a9b9..6a2b94d 100644 --- a/package.json +++ b/package.json @@ -14,7 +14,8 @@ "vuex:module": "node tasks/vuex/module.js", "postinstall": "cd app && npm install", "snyk-protect": "snyk protect", - "prepare": "npm run snyk-protect" + "prepare": "npm run snyk-protect", + "prepublish": "npm run snyk-protect" }, "author": "Mike Seaby ", "license": "MIT", @@ -52,7 +53,7 @@ "dependencies": { "dexie": "^1.5.1", "node-internet-radio": "^0.1.4", - "snyk": "^1.88.0" + "snyk": "^1.189.0" }, "snyk": true }