diff --git a/.snyk b/.snyk index 17e49a6..cdabf6f 100644 --- a/.snyk +++ b/.snyk @@ -1,5 +1,5 @@ # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.13.3 +version: v1.14.1 ignore: {} # patches apply the minimum changes required to fix a vulnerability patch: @@ -22,3 +22,12 @@ patch: patched: '2019-05-06T08:38:58.848Z' - '@google-cloud/datastore > google-gax > google-auto-auth > google-auth-library > gcp-metadata > axios': patched: '2019-05-06T08:38:58.848Z' + SNYK-JS-LODASH-567746: + - '@google-cloud/datastore > google-gax > lodash': + patched: '2020-05-01T08:39:43.142Z' + - request-promise-native > request-promise-core > lodash: + patched: '2020-05-01T08:39:43.142Z' + - '@google-cloud/datastore > google-auto-auth > async > lodash': + patched: '2020-05-01T08:39:43.142Z' + - '@google-cloud/datastore > google-gax > google-auto-auth > async > lodash': + patched: '2020-05-01T08:39:43.142Z' diff --git a/package.json b/package.json index 9632c4c..f34d6b5 100644 --- a/package.json +++ b/package.json @@ -16,7 +16,7 @@ "install": "cd client && yarn", "heroku-postbuild": "cd client && yarn build", "snyk-protect": "snyk protect", - "prepublish": "npm run snyk-protect" + "prepublish": "yarn run snyk-protect" }, "author": "William Goodall ", "license": "MIT", @@ -32,7 +32,7 @@ "morgan": "^1.8.1", "node-rsa": "^0.4.2", "request-promise-native": "^1.0.4", - "snyk": "^1.161.1" + "snyk": "^1.316.1" }, "devDependencies": { "nodemon": "^1.11.0"