fix: .snyk & package.json to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-450202
urbica · Aug 27, 2019 · d99c595 · d99c595
1 parent 6eb7751
commit d99c595
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 1 deletion.
diff --git a/.snyk b/.snyk
@@ -484,3 +484,15 @@ patch:
         patched: '2019-08-21T10:17:33.391Z'
     - documentation > @babel/preset-env > @babel/plugin-proposal-async-generator-functions > @babel/helper-remap-async-to-generator > @babel/helper-wrap-function > @babel/traverse > @babel/helper-function-name > @babel/helper-get-function-arity > @babel/types > lodash:
         patched: '2019-08-21T10:17:33.391Z'
+    - snyk > snyk-nuget-plugin > dotnet-deps-parser > lodash:
+        patched: '2019-08-27T09:11:51.853Z'
+    - snyk > snyk-config > lodash:
+        patched: '2019-08-27T09:11:51.853Z'
+    - snyk > inquirer > lodash:
+        patched: '2019-08-27T09:11:51.853Z'
+    - snyk > snyk-go-plugin > graphlib > lodash:
+        patched: '2019-08-27T09:11:51.853Z'
+    - snyk > @snyk/dep-graph > graphlib > lodash:
+        patched: '2019-08-27T09:11:51.853Z'
+    - snyk > snyk-nodejs-lockfile-parser > graphlib > lodash:
+        patched: '2019-08-27T09:11:51.853Z'
diff --git a/package.json b/package.json
@@ -47,7 +47,7 @@
     "pg-connection-string": "^2.0.0",
     "pg-monitor": "^1.1.0",
     "pg-promise": "^8.6.4",
-    "snyk": "^1.217.3"
+    "snyk": "^1.221.0"
   },
   "devDependencies": {
     "commitizen": "^3.0.7",