fix: .snyk & package.json to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-AXIOS-174505
braposo · Jul 5, 2019 · 326859b · 326859b
1 parent 595c4f6
commit 326859b
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 1 deletion.
diff --git a/.snyk b/.snyk
@@ -0,0 +1,8 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.13.3
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-AXIOS-174505:
+    - figma-js > axios:
+        patched: '2019-05-08T11:40:10.123Z'
diff --git a/package.json b/package.json
@@ -17,6 +17,8 @@
         "lint:check": "eslint --print-config . | eslint-config-prettier-check",
         "commit": "yarn git-cz",
         "semantic-release": "semantic-release",
+        "snyk-protect": "snyk protect",
+        "prepublish": "npm run snyk-protect",
         "ts:check": "tsc -p tsconfig.json --allowJs false --noEmit"
     },
     "keywords": [
@@ -56,6 +58,7 @@
         "isomorphic-fetch": "^2.2.1",
         "lodash": "^4.17.11",
         "nodemon": "^1.19.0",
+        "snyk": "^1.162.0",
         "ts-node": "^8.2.0"
     },
     "devDependencies": {
@@ -125,5 +128,6 @@
         "commitizen": {
             "path": "cz-conventional-changelog"
         }
-    }
+    },
+    "snyk": true
 }