From ead775e22e733b175a236ee6f45b3f769aaf9bb3 Mon Sep 17 00:00:00 2001 From: snyk-test Date: Thu, 4 Jul 2019 04:45:02 +0000 Subject: [PATCH] fix: examples/with-sitemap-and-robots-express-server-typescript/.snyk & examples/with-sitemap-and-robots-express-server-typescript/package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-450202 --- .../.snyk | 28 +++++++++++++++++++ .../package.json | 10 +++++-- 2 files changed, 35 insertions(+), 3 deletions(-) create mode 100644 examples/with-sitemap-and-robots-express-server-typescript/.snyk diff --git a/examples/with-sitemap-and-robots-express-server-typescript/.snyk b/examples/with-sitemap-and-robots-express-server-typescript/.snyk new file mode 100644 index 0000000000000..754b2b6673024 --- /dev/null +++ b/examples/with-sitemap-and-robots-express-server-typescript/.snyk @@ -0,0 +1,28 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.13.5 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + SNYK-JS-LODASH-450202: + - next > @babel/plugin-proposal-class-properties > @babel/helper-function-name > @babel/types > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > autodll-webpack-plugin > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/plugin-transform-modules-commonjs > @babel/helper-module-transforms > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > styled-jsx > babel-types > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > autodll-webpack-plugin > webpack-merge > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/core > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/preset-react > @babel/plugin-transform-react-jsx > @babel/helper-builder-react-jsx > @babel/types > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/preset-env > @babel/plugin-transform-object-super > @babel/helper-replace-supers > @babel/traverse > @babel/generator > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/plugin-proposal-class-properties > @babel/helper-replace-supers > @babel/traverse > @babel/helper-function-name > @babel/helper-get-function-arity > @babel/types > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/preset-env > @babel/plugin-transform-object-super > @babel/helper-replace-supers > @babel/traverse > @babel/helper-function-name > @babel/template > @babel/types > lodash: + patched: '2019-07-04T04:45:00.150Z' + - next > @babel/preset-env > @babel/plugin-proposal-async-generator-functions > @babel/helper-remap-async-to-generator > @babel/helper-wrap-function > @babel/traverse > @babel/helper-function-name > @babel/helper-get-function-arity > @babel/types > lodash: + patched: '2019-07-04T04:45:00.150Z' diff --git a/examples/with-sitemap-and-robots-express-server-typescript/package.json b/examples/with-sitemap-and-robots-express-server-typescript/package.json index af9a17c847530..dc8a0549d7b3b 100644 --- a/examples/with-sitemap-and-robots-express-server-typescript/package.json +++ b/examples/with-sitemap-and-robots-express-server-typescript/package.json @@ -12,14 +12,17 @@ "start": "npm run build-ts && npm run build-static && npm run start-node", "dev": "npm run build-ts && npm run build-static && npm run start-nodemon", "now": "npm run build && now ./dist && now alias", - "tslint": "tslint -c tslint.json -p tsconfig.next.json && tslint -c tslint.json -p tsconfig.server.json" + "tslint": "tslint -c tslint.json -p tsconfig.next.json && tslint -c tslint.json -p tsconfig.server.json", + "snyk-protect": "snyk protect", + "prepublish": "npm run snyk-protect" }, "dependencies": { "express": "^4.16.3", "next": "latest", "react": "^16.2.0", "react-dom": "^16.2.0", - "sitemap": "^1.13.0" + "sitemap": "^1.13.0", + "snyk": "^1.189.0" }, "devDependencies": { "@types/express": "^4.16.0", @@ -30,5 +33,6 @@ "tslint-loader": "^3.5.3", "tslint-react": "^3.4.0", "typescript": "^3.0.1" - } + }, + "snyk": true }