Merge pull request #2 from learnwithgeeks/snyk-fix-rwiwtq

vivekanand999 · web-flow · commit d9ee09ce2289 · 2020-12-15T19:00:07.000+05:00
[Snyk] Fix for 1 vulnerable dependencies
diff --git a/.snyk b/.snyk
@@ -0,0 +1,8 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.13.3
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-AXIOS-174505:
+    - axios:
+        patched: '2019-05-06T03:29:13.850Z'
diff --git a/package.json b/package.json
@@ -7,7 +7,9 @@
     "start": "node app.js",
     "dev": "nodemon app.js",
     "test": "jest test",
-    "coverage": "jest --collectCoverageFrom=test/**.js --coverage test"
+    "coverage": "jest --collectCoverageFrom=test/**.js --coverage test",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "repository": {
     "type": "git",
@@ -28,10 +30,12 @@
     "jsonwebtoken": "^8.4.0",
     "mongoose": "^5.3.12",
     "passport": "^0.4.0",
-    "passport-jwt": "^4.0.0"
+    "passport-jwt": "^4.0.0",
+    "snyk": "^1.161.1"
   },
   "devDependencies": {
     "jest": "^23.6.0",
     "supertest": "^3.3.0"
-  }
+  },
+  "snyk": true
 }
