From 28bbc447d2c9672505b49a9601137340d9d10e69 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 23 Aug 2022 05:41:10 +0000 Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:ms:20170412 --- .snyk | 8 +++++ package.json | 92 ++++++++++++++++++++++++++++------------------------ 2 files changed, 57 insertions(+), 43 deletions(-) create mode 100644 .snyk diff --git a/.snyk b/.snyk new file mode 100644 index 0000000000..a6d0610ddd --- /dev/null +++ b/.snyk @@ -0,0 +1,8 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.25.0 +ignore: {} +# patches apply the minimum changes required to fix a vulnerability +patch: + 'npm:ms:20170412': + - karma > connect > debug > ms: + patched: '2022-08-23T05:41:07.631Z' diff --git a/package.json b/package.json index 2fbd7bd4dc..6486549b00 100644 --- a/package.json +++ b/package.json @@ -1,45 +1,51 @@ { - "name": "bugsnag-js", - "description": "Automatically detect JavaScript errors on your websites, collect detailed diagnostic information, and get notified about errors in real-time.", - "keywords": [ - "exception", - "bugsnag", - "error", - "JavaScript", - "browsers", - "monitoring", - "reporting", - "client-side" - ], - "version": "3.2.0", - "license": "MIT", - "main": "src/bugsnag.js", - "types": "src/bugsnag.d.ts", - "scripts": { - "lint": "grunt eslint", - "test": "karma start --single-run", - "test:watch": "karma start --browsers PhantomJS", - "test:quick": "karma start --single-run --browsers PhantomJS" - }, - "repository": { - "type": "git", - "url": "https://github.com/bugsnag/bugsnag-js" - }, - "devDependencies": { - "eslint": "^3.4.0", - "grunt": "~0.4.2", - "grunt-bumpx": "~0.1.0", - "grunt-contrib-watch": "~0.5.2", - "grunt-docco": "~0.4.0", - "grunt-invalidate-cloudfront": "~0.1.4", - "grunt-regex-replace": "~0.2.5", - "grunt-s3": "git://github.com/pifantastic/grunt-s3", - "gruntify-eslint": "^1.3.0", - "karma": "~1.3.0", - "karma-mocha-ie-legacy": "file:./test/karma-mocha", - "karma-phantomjs-launcher": "^1.0.1", - "karma-sauce-launcher": "^1.0.0", - "mocha": "~1.15.1", - "uglifyjs": "latest" - } + "name": "bugsnag-js", + "description": "Automatically detect JavaScript errors on your websites, collect detailed diagnostic information, and get notified about errors in real-time.", + "keywords": [ + "exception", + "bugsnag", + "error", + "JavaScript", + "browsers", + "monitoring", + "reporting", + "client-side" + ], + "version": "3.2.0", + "license": "MIT", + "main": "src/bugsnag.js", + "types": "src/bugsnag.d.ts", + "scripts": { + "lint": "grunt eslint", + "test": "karma start --single-run", + "test:watch": "karma start --browsers PhantomJS", + "test:quick": "karma start --single-run --browsers PhantomJS", + "prepare": "yarn run snyk-protect", + "snyk-protect": "snyk-protect" + }, + "repository": { + "type": "git", + "url": "https://github.com/bugsnag/bugsnag-js" + }, + "devDependencies": { + "eslint": "^3.4.0", + "grunt": "~0.4.2", + "grunt-bumpx": "~0.1.0", + "grunt-contrib-watch": "~0.5.2", + "grunt-docco": "~0.4.0", + "grunt-invalidate-cloudfront": "~0.1.4", + "grunt-regex-replace": "~0.2.5", + "grunt-s3": "git://github.com/pifantastic/grunt-s3", + "gruntify-eslint": "^1.3.0", + "karma": "~1.3.0", + "karma-mocha-ie-legacy": "file:./test/karma-mocha", + "karma-phantomjs-launcher": "^1.0.1", + "karma-sauce-launcher": "^1.0.0", + "mocha": "~1.15.1", + "uglifyjs": "latest" + }, + "snyk": true, + "dependencies": { + "@snyk/protect": "latest" + } } \ No newline at end of file