From 3d03098cf221af23f5f3e0fccc1a65dff55afbfb Mon Sep 17 00:00:00 2001 From: snyk-test Date: Sat, 6 Jul 2019 04:52:08 +0000 Subject: [PATCH] fix: .snyk & package.json to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-450202 --- .snyk | 22 ++++++++++++++++++++++ package.json | 2 +- 2 files changed, 23 insertions(+), 1 deletion(-) diff --git a/.snyk b/.snyk index 0a49c01f..e142ab66 100644 --- a/.snyk +++ b/.snyk @@ -6,3 +6,25 @@ patch: SNYK-JS-LODASH-450202: - '@emotion/core > @emotion/css > babel-plugin-emotion > @babel/helper-module-imports > @babel/types > lodash': patched: '2019-07-04T07:31:12.314Z' + - snyk > inquirer > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-nuget-plugin > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-nodejs-lockfile-parser > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > @snyk/dep-graph > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-config > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-mvn-plugin > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > @snyk/dep-graph > graphlib > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-nodejs-lockfile-parser > graphlib > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-go-plugin > graphlib > lodash: + patched: '2019-07-06T04:52:06.325Z' + - snyk > snyk-php-plugin > @snyk/composer-lockfile-parser > lodash: + patched: '2019-07-06T04:52:06.325Z' diff --git a/package.json b/package.json index 6c34072f..cb4ec9cb 100644 --- a/package.json +++ b/package.json @@ -83,7 +83,7 @@ "homepage": "https://github.com/jameswlane/react-pure-loaders#readme", "dependencies": { "@emotion/core": "10.0.14", - "snyk": "^1.189.0" + "snyk": "^1.192.3" }, "devDependencies": { "@babel/cli": "7.5.0",