Browse Source

fix: package.json & .snyk to reduce vulnerabilities

pull/1/head
snyk-bot 8 years ago
parent
commit
1f38cf9406
2 changed files with 18 additions and 7 deletions
  1. 12
      .snyk
  2. 13
      package.json

12
.snyk

@ -1,4 +1,12 @@
failThreshold: high
version: v1.5.2
version: v1.5.0
ignore: {}
patch: {}
patch:
'npm:negotiator:20160616':
- socket.io > engine.io > accepts > negotiator:
patched: '2016-09-09T02:19:31.082Z'
'npm:ws:20160624':
- socket.io > engine.io > ws:
patched: '2016-09-09T02:19:31.082Z'
- socket.io > socket.io-client > engine.io-client > ws:
patched: '2016-09-09T02:19:31.082Z'

13
package.json

@ -6,7 +6,9 @@
"scripts": {
"start": "node server",
"dev": "gulp",
"test": "snyk test && istanbul cover ./node_modules/mocha/bin/_mocha --report lcovonly -- -R spec ./tests/index.js && cat ./coverage/lcov.info | ./node_modules/.bin/codacy-coverage && rm -rf ./coverage"
"test": "snyk test && istanbul cover ./node_modules/mocha/bin/_mocha --report lcovonly -- -R spec ./tests/index.js && cat ./coverage/lcov.info | ./node_modules/.bin/codacy-coverage && rm -rf ./coverage",
"snyk-protect": "snyk protect",
"prepublish": "npm run snyk-protect"
},
"repository": {
"type": "git",
@ -80,7 +82,8 @@
"sticky-js": "^1.0.7",
"validator": "^5.6.0",
"validator-as-promised": "^1.0.2",
"winston": "^2.2.0"
"winston": "^2.2.0",
"snyk": "^1.19.1"
},
"devDependencies": {
"ace-builds": "^1.2.5",
@ -109,9 +112,9 @@
"mocha": "^3.0.2",
"mocha-lcov-reporter": "^1.2.0",
"nodemon": "^1.10.2",
"snyk": "^1.19.1",
"sticky-js": "^1.0.5",
"twemoji-awesome": "^1.0.4",
"vue": "^1.0.26"
}
}
},
"snyk": true
}
Loading…
Cancel
Save