From c44dd803a471556a90ad376bc76cd7fa099b0096 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 15 Apr 2020 08:42:15 +0000 Subject: [PATCH] fix: examples/using-gatsby-source-graphql/package.json & examples/using-gatsby-source-graphql/.snyk to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:hoek:20180212 --- examples/using-gatsby-source-graphql/.snyk | 8 ++++++++ examples/using-gatsby-source-graphql/package.json | 10 +++++++--- 2 files changed, 15 insertions(+), 3 deletions(-) create mode 100644 examples/using-gatsby-source-graphql/.snyk diff --git a/examples/using-gatsby-source-graphql/.snyk b/examples/using-gatsby-source-graphql/.snyk new file mode 100644 index 0000000000000..a18f83ada192b --- /dev/null +++ b/examples/using-gatsby-source-graphql/.snyk @@ -0,0 +1,8 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.14.1 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + 'npm:hoek:20180212': + - gatsby > joi2gql > hoek: + patched: '2020-04-15T08:42:12.885Z' diff --git a/examples/using-gatsby-source-graphql/package.json b/examples/using-gatsby-source-graphql/package.json index badcf5fb594de..bdcc0109bd41a 100644 --- a/examples/using-gatsby-source-graphql/package.json +++ b/examples/using-gatsby-source-graphql/package.json @@ -5,7 +5,9 @@ "scripts": { "develop": "gatsby develop", "build": "gatsby build", - "serve": "gatsby serve" + "serve": "gatsby serve", + "snyk-protect": "snyk protect", + "prepublish": "npm run snyk-protect" }, "dependencies": { "dateformat": "^3.0.3", @@ -14,7 +16,8 @@ "gatsby-source-graphql": "^2.0.0", "react": "^16.3.2", "react-dom": "^16.3.2", - "react-markdown": "^3.3.4" + "react-markdown": "^3.3.4", + "snyk": "^1.305.1" }, "devDependencies": { "babel-eslint": "8.2.1", @@ -29,5 +32,6 @@ "eslint-plugin-react": "^7.7.0", "prettier": "^1.13.7", "prettier-eslint-cli": "4.7.1" - } + }, + "snyk": true } \ No newline at end of file