From 6843a3d3b2b2c26c8f5524033f8fa235760b25b0 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 May 2020 02:40:55 +0300 Subject: [PATCH 1/2] fix: package.json & .snyk to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index 578ec4f..8a7679a 100644 --- a/package.json +++ b/package.json @@ -44,7 +44,7 @@ "rxjs": "^5.5.2", "stacktrace-js": "^2.0.0", "zone.js": "^0.8.14", - "snyk": "^1.52.1" + "snyk": "^1.316.1" }, "devDependencies": { "@angular/cli": "^1.5.2", From e0e02d4342d304990575e0f629926df643fe03f7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 1 May 2020 02:40:56 +0300 Subject: [PATCH 2/2] fix: package.json & .snyk to reduce vulnerabilities The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746 --- .snyk | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/.snyk b/.snyk index 029771d..790d791 100644 --- a/.snyk +++ b/.snyk @@ -1,5 +1,5 @@ # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.8.0 +version: v1.14.1 ignore: {} # patches apply the minimum changes required to fix a vulnerability patch: @@ -8,3 +8,6 @@ patch: patched: '2017-11-30T23:56:09.848Z' - ng2-charts > chart.js > moment: patched: '2017-11-30T23:56:09.848Z' + SNYK-JS-LODASH-567746: + - lodash: + patched: '2020-04-30T23:40:46.156Z'