From 7039c64b974a80c8ca55165b65ea8b60657d3975 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 21 Jul 2022 00:54:29 +0000
Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:debug:20170905
- https://snyk.io/vuln/npm:hawk:20160119
- https://snyk.io/vuln/npm:http-signature:20150122
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:ms:20170412
- https://snyk.io/vuln/npm:request:20160119
- https://snyk.io/vuln/npm:tar:20151103
- https://snyk.io/vuln/npm:tunnel-agent:20170305
---
 .snyk        | 47 +++++++++++++++++++++++++++++++++++++++++++++++
 package.json | 10 ++++++++--
 2 files changed, 55 insertions(+), 2 deletions(-)
 create mode 100644 .snyk

diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..d5f6585
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,47 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:debug:20170905':
+    - ng-build > node-sass > mocha > debug:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:hawk:20160119':
+    - ng-build > node-sass > pangyp > request > hawk:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:http-signature:20150122':
+    - ng-build > node-sass > pangyp > request > http-signature:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:minimatch:20160620':
+    - ng-build > node-sass > pangyp > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > node-sass > sass-graph > glob > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > gulp > vinyl-fs > glob-stream > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > node-sass > pangyp > glob > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > gulp > vinyl-fs > glob-stream > glob > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > node-sass > gaze > globule > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > node-sass > gaze > globule > glob > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > gulp > vinyl-fs > glob-watcher > gaze > globule > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > gulp > vinyl-fs > glob-watcher > gaze > globule > glob > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+    - ng-build > node-sass > mocha > glob > minimatch:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:ms:20170412':
+    - ng-build > node-sass > mocha > debug > ms:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:request:20160119':
+    - ng-build > node-sass > pangyp > request:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:tar:20151103':
+    - ng-build > node-sass > pangyp > tar:
+        patched: '2022-07-21T00:54:28.191Z'
+  'npm:tunnel-agent:20170305':
+    - ng-build > node-sass > pangyp > request > tunnel-agent:
+        patched: '2022-07-21T00:54:28.191Z'
diff --git a/package.json b/package.json
index a92b16f..eb79a68 100644
--- a/package.json
+++ b/package.json
@@ -53,7 +53,8 @@
     "type-is": "^1.6.1",
     "vinyl-source-stream": "^1.0.0",
     "winston": "^0.8.3",
-    "wiredep": "^2.2.2"
+    "wiredep": "^2.2.2",
+    "@snyk/protect": "latest"
   },
   "cordovaPlugins": [
     "cordova-plugin-whitelist",
@@ -65,5 +66,10 @@
   ],
   "cordovaPlatforms": [
     "ios"
-  ]
+  ],
+  "scripts": {
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
+  },
+  "snyk": true
 }