fix: package.json, package-lock.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746
randytarampi · May 1, 2020 · 8594b70 · 8594b70
1 parent 06c8a02
commit 8594b70
Showing 1 changed file with 7 additions and 3 deletions.
diff --git a/package.json b/package.json
@@ -15,7 +15,8 @@
     "@randy.tarampi/generic-icon-splash-generate": "^2.0.0",
     "@randy.tarampi/ios-icons": "^4.2.0",
     "@randy.tarampi/ios-splash": "^3.1.0",
-    "commander": "^5.0.0"
+    "commander": "^5.0.0",
+    "snyk": "^1.316.1"
   },
   "devDependencies": {
     "@semantic-release/changelog": "^5.0.0",
@@ -75,7 +76,10 @@
     "coveralls": "cat coverage/lcov.info | coveralls",
     "prepublishOnly": "npm shrinkwrap",
     "pretest": "gulp -LLLL --color lint",
-    "test": "NODE_ENV=test gulp -LLLL --color test"
+    "test": "NODE_ENV=test gulp -LLLL --color test",
+    "snyk-protect": "snyk protect",
+    "prepare": "npm run snyk-protect"
   },
-  "sideEffects": false
+  "sideEffects": false,
+  "snyk": true
 }