From 97a4bb0a333214c8840bbacfa26da45200400b1c Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 1 May 2020 08:17:42 +0100
Subject: [PATCH 1/2] fix: test/fixtures/protect-via-snyk/.snyk &
 test/fixtures/protect-via-snyk/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-567746
---
 test/fixtures/protect-via-snyk/.snyk | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/test/fixtures/protect-via-snyk/.snyk b/test/fixtures/protect-via-snyk/.snyk
index a241f75ecd..6ceaa00835 100644
--- a/test/fixtures/protect-via-snyk/.snyk
+++ b/test/fixtures/protect-via-snyk/.snyk
@@ -1,5 +1,23 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+# patches apply the minimum changes required to fix a vulnerability
 patch:
   'npm:semver:20150403':
     - semver@2.3.2:
         patched: '2015-10-27T16:30:18.628Z'
+  SNYK-JS-LODASH-567746:
+    - snyk > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
+    - snyk > inquirer > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
+    - snyk > snyk-config > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
+    - snyk > snyk-nuget-plugin > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
+    - snyk > snyk-php-plugin > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
+    - snyk > snyk-go-plugin > graphlib > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
+    - snyk > snyk-nodejs-lockfile-parser > lodash:
+        patched: '2020-05-01T07:17:40.629Z'
 ignore: {}
+version: v1.14.1

From b25b57e424527d9ce81fa0882b7163b4db6499b8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 1 May 2020 08:17:43 +0100
Subject: [PATCH 2/2] fix: test/fixtures/protect-via-snyk/.snyk &
 test/fixtures/protect-via-snyk/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://dev.snyk.io/vuln/SNYK-JS-LODASH-567746
---
 test/fixtures/protect-via-snyk/package.json | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/test/fixtures/protect-via-snyk/package.json b/test/fixtures/protect-via-snyk/package.json
index 2a55c7e80d..7c5c4d1cfc 100644
--- a/test/fixtures/protect-via-snyk/package.json
+++ b/test/fixtures/protect-via-snyk/package.json
@@ -6,13 +6,14 @@
   "dependencies": {
     "semver": "^2.3.2",
     "get-uri": "2.0.2",
-    "snyk": "*"
+    "snyk": "^1.316.1"
   },
   "scripts": {
     "env": "env",
     "test": "snyk test && echo \"Error: no test specified\" && exit 1",
     "snyk-protect": "snyk protect",
-    "postinstall": "npm run snyk-protect"
+    "postinstall": "npm run snyk-protect",
+    "prepare": "yarn run snyk-protect"
   },
   "author": "",
   "license": "ISC",