fix: packages/dandi-contrib/mvc-auth-firebase/.snyk, packages/dandi-c…

…ontrib/mvc-auth-firebase/package.json & packages/dandi-contrib/mvc-auth-firebase/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-450202
just-dandi · Jul 4, 2019 · bccadb9 · bccadb9
1 parent f14eb87
commit bccadb9
Show file tree

Hide file tree

Showing 3 changed files with 2,389 additions and 101 deletions.
diff --git a/packages/dandi-contrib/mvc-auth-firebase/.snyk b/packages/dandi-contrib/mvc-auth-firebase/.snyk
@@ -0,0 +1,16 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.13.5
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-450202:
+    - firebase-admin > @google-cloud/storage > async > lodash:
+        patched: '2019-07-04T06:48:45.099Z'
+    - firebase-admin > @google-cloud/firestore > google-gax > @grpc/proto-loader > lodash:
+        patched: '2019-07-04T06:48:45.099Z'
+    - firebase-admin > @google-cloud/storage > @google-cloud/common > google-auto-auth > async > lodash:
+        patched: '2019-07-04T06:48:45.099Z'
+    - firebase-admin > @google-cloud/storage > gcs-resumable-upload > google-auto-auth > async > lodash:
+        patched: '2019-07-04T06:48:45.099Z'
+    - firebase-admin > @google-cloud/storage > @google-cloud/common > split-array-stream > async > lodash:
+        patched: '2019-07-04T06:48:45.099Z'