From b4547b5d23341f7b44c8f8ea2e9a914b39531964 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 5 Dec 2018 04:39:07 +0000
Subject: [PATCH] fix: examples/create-react-app/.snyk &
 examples/create-react-app/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MERGE-72553
- https://snyk.io/vuln/npm:atob:20180429
- https://snyk.io/vuln/npm:braces:20180219
- https://snyk.io/vuln/npm:cryptiles:20180710
- https://snyk.io/vuln/npm:deep-extend:20180409
- https://snyk.io/vuln/npm:extend:20180424
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:macaddress:20180511
- https://snyk.io/vuln/npm:node-forge:20180226
- https://snyk.io/vuln/npm:querystringify:20180419
- https://snyk.io/vuln/npm:react-dom:20180802
- https://snyk.io/vuln/npm:stringstream:20180511
- https://snyk.io/vuln/npm:ua-parser-js:20180227
- https://snyk.io/vuln/npm:url-parse:20180731


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:hoek:20180212
---
 examples/create-react-app/.snyk        | 30 ++++++++++++++++++++++++++
 examples/create-react-app/package.json | 21 ++++++++++++------
 2 files changed, 45 insertions(+), 6 deletions(-)
 create mode 100644 examples/create-react-app/.snyk

diff --git a/examples/create-react-app/.snyk b/examples/create-react-app/.snyk
new file mode 100644
index 0000000..6a5dd6d
--- /dev/null
+++ b/examples/create-react-app/.snyk
@@ -0,0 +1,30 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.13.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hoek:20180212':
+    - react-scripts > webpack-dev-server > chokidar > fsevents > node-pre-gyp > hawk > sntp > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > fsevents > node-pre-gyp > hawk > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > fsevents > node-pre-gyp > hawk > boom > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack-dev-server > chokidar > fsevents > node-pre-gyp > hawk > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > fsevents > node-pre-gyp > hawk > cryptiles > boom > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack-dev-server > chokidar > fsevents > node-pre-gyp > hawk > boom > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > fsevents > node-pre-gyp > hawk > sntp > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > boom > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > sntp > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack-dev-server > chokidar > fsevents > node-pre-gyp > hawk > cryptiles > boom > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
+    - react-scripts > webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > cryptiles > boom > hoek:
+        patched: '2018-12-05T04:39:06.092Z'
diff --git a/examples/create-react-app/package.json b/examples/create-react-app/package.json
index 852b23e..27843a9 100644
--- a/examples/create-react-app/package.json
+++ b/examples/create-react-app/package.json
@@ -8,17 +8,20 @@
     "prettier": "^1.12.1",
     "react": "^16.3.2",
     "react-dip": "^0.0.3-beta.8",
-    "react-dom": "^16.3.2",
+    "react-dom": "^16.3.3",
     "react-router-dom": "^4.2.2",
-    "react-scripts": "^1.1.4",
-    "web-animations-js": "^2.3.1"
+    "react-scripts": "^1.1.5",
+    "web-animations-js": "^2.3.1",
+    "snyk": "^1.114.0"
   },
   "scripts": {
     "start": "react-scripts start",
     "build": "react-scripts build",
     "test": "react-scripts test --env=jsdom",
     "eject": "react-scripts eject",
-    "flow": "flow"
+    "flow": "flow",
+    "snyk-protect": "snyk protect",
+    "prepare": "npm run snyk-protect"
   },
   "browserslist": {
     "development": [
@@ -26,7 +29,13 @@
       "last 2 firefox versions",
       "last 2 edge versions"
     ],
-    "production": [">1%", "last 4 versions", "Firefox ESR", "not ie < 11"]
+    "production": [
+      ">1%",
+      "last 4 versions",
+      "Firefox ESR",
+      "not ie < 11"
+    ]
   },
-  "devDependencies": {}
+  "devDependencies": {},
+  "snyk": true
 }