diff --git a/app/.snyk b/app/.snyk new file mode 100644 index 0000000..378f1b6 --- /dev/null +++ b/app/.snyk @@ -0,0 +1,20 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.14.1 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + SNYK-JS-LODASH-567746: + - wdio-teamcity-reporter > lodash: + patched: '2020-04-30T21:15:39.453Z' + - webdriverio > archiver > lodash: + patched: '2020-04-30T21:15:39.453Z' + - webdriverio > inquirer > lodash: + patched: '2020-04-30T21:15:39.453Z' + - webdriverio > archiver > archiver-utils > lodash: + patched: '2020-04-30T21:15:39.453Z' + - webdriverio > archiver > zip-stream > lodash: + patched: '2020-04-30T21:15:39.453Z' + - webdriverio > archiver > zip-stream > archiver-utils > lodash: + patched: '2020-04-30T21:15:39.453Z' + - webdriverio > gaze > globule > lodash: + patched: '2020-04-30T21:15:39.453Z' diff --git a/app/package.json b/app/package.json index e919a44..637c4f0 100644 --- a/app/package.json +++ b/app/package.json @@ -4,13 +4,17 @@ "description": "", "main": "wdio.conf.js", "scripts": { - "test": "wdio wdio.conf.js" + "test": "wdio wdio.conf.js", + "snyk-protect": "snyk protect", + "prepublish": "npm run snyk-protect" }, "author": "", "license": "ISC", "dependencies": { "wdio-mocha-framework": "^0.5.8", "wdio-teamcity-reporter": "^1.1.1", - "webdriverio": "^4.6.2" - } + "webdriverio": "^4.6.2", + "snyk": "^1.316.1" + }, + "snyk": true }