/
.snyk
52 lines (52 loc) · 2.42 KB
/
.snyk
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.12.0
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
ignore:
'npm:chownr:20180731':
- npm > chownr:
reason: No patch and no upgrade available
expires: '2018-10-11T20:48:10.411Z'
- npm > cacache > chownr:
reason: No patch and no upgrade available
expires: '2018-10-11T20:48:10.411Z'
- npm > tar > chownr:
reason: No patch and no upgrade available
expires: '2018-10-11T20:48:10.411Z'
- npm > pacote > cacache > chownr:
reason: No patch and no upgrade available
expires: '2018-10-11T20:48:10.411Z'
- npm > pacote > tar > chownr:
reason: No patch and no upgrade available
expires: '2018-10-11T20:48:10.411Z'
# patches apply the minimum changes required to fix a vulnerability
patch:
'npm:hoek:20180212':
- npm > node-gyp > request > hawk > cryptiles > boom > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > npm-lifecycle > node-gyp > request > hawk > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > npm-lifecycle > node-gyp > request > hawk > sntp > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > npm-lifecycle > node-gyp > request > hawk > cryptiles > boom > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > node-gyp > request > hawk > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > node-gyp > request > hawk > boom > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > node-gyp > request > hawk > sntp > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > npm-lifecycle > node-gyp > request > hawk > boom > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > libcipm > npm-lifecycle > node-gyp > request > hawk > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > libcipm > npm-lifecycle > node-gyp > request > hawk > boom > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > libcipm > npm-lifecycle > node-gyp > request > hawk > sntp > hoek:
patched: '2018-07-08T17:53:46.811Z'
- npm > libcipm > npm-lifecycle > node-gyp > request > hawk > cryptiles > boom > hoek:
patched: '2018-07-08T17:53:46.811Z'
'npm:lodash:20180130':
- npm > cli-table2 > lodash:
patched: '2018-07-08T17:53:46.811Z'
- npm > npm-audit-report > cli-table2 > lodash:
patched: '2018-07-08T17:53:46.811Z'