New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Fix for 1 vulnerable dependency path #68

Merged
merged 1 commit into from Jul 27, 2017

Conversation

3 participants
@snyk-bot
Contributor

snyk-bot commented Jul 26, 2017

This pull request fixes one or more vulnerable packages in the npm dependencies of this project. See the Snyk test report for this project for details.

The PR includes:

  • package.json scripts and a Snyk policy (.snyk) file, which patch the vulnerabilities that can't be upgraded away and ignore vulnerabilities with no fixes.

Vulnerabilities that will be fixed

With a Snyk patch:

You can read more about Snyk's upgrade and patch logic in Snyk's documentation.

Check the changes in this PR to ensure they won't cause issues with your project.

Stay secure,
The Snyk team

snyk-bot
fix: package.json & .snyk to reduce vulnerabilities
The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:ms:20170412

Latest report for bionode/bionode-watermill:
https://snyk.io/test/github/bionode/bionode-watermill

@bmpvieira bmpvieira self-assigned this Jul 26, 2017

@bmpvieira bmpvieira requested a review from thejmazz Jul 26, 2017

@bmpvieira bmpvieira added the security label Jul 26, 2017

@bmpvieira bmpvieira added this to In Progress in Bionode Project Board Jul 26, 2017

@thejmazz

From the diff, it doesn't change any actual modules, just adds its own skyk stuff

@thejmazz thejmazz merged commit 20d56f3 into dev Jul 27, 2017

7 of 9 checks passed

continuous-integration/travis-ci/pr The Travis CI build failed
Details
continuous-integration/travis-ci/push The Travis CI build failed
Details
continuous-integration/gitbook/epub GitBook build "epub" succeeded
Details
continuous-integration/gitbook/json GitBook build "json" succeeded
Details
continuous-integration/gitbook/mobi GitBook build "mobi" succeeded
Details
continuous-integration/gitbook/pdf GitBook build "pdf" succeeded
Details
continuous-integration/gitbook/website GitBook build "website" succeeded
Details
security/snyk No new vulnerabilities
Details
security/snyk-verify Verified pull request

@thejmazz thejmazz deleted the snyk-fix-4fdc90de branch Jul 27, 2017

@bmpvieira bmpvieira moved this from In Progress to Done in Bionode Project Board Aug 23, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment