fix: package.json, package-lock.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-ADMZIP-1065796 - https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908 - https://snyk.io/vuln/SNYK-JS-BABELTRAVERSE-5962463 - https://snyk.io/vuln/SNYK-JS-DECODEURICOMPONENT-3149970 - https://snyk.io/vuln/SNYK-JS-DICER-2311764 - https://snyk.io/vuln/SNYK-JS-DUSTJSLINKEDIN-1089257 - https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-473997 - https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-595969 - https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116 - https://snyk.io/vuln/SNYK-JS-ISTANBULREPORTS-2328088 - https://snyk.io/vuln/SNYK-JS-KINDOF-537849 - https://snyk.io/vuln/SNYK-JS-LODASH-450202 - https://snyk.io/vuln/SNYK-JS-LODASH-567746 - https://snyk.io/vuln/SNYK-JS-LODASH-608086 - https://snyk.io/vuln/SNYK-JS-LODASH-73638 - https://snyk.io/vuln/SNYK-JS-LODASH-73639 - https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818 - https://snyk.io/vuln/SNYK-JS-MIXINDEEP-450212 - https://snyk.io/vuln/SNYK-JS-SETVALUE-1540541 - https://snyk.io/vuln/SNYK-JS-SETVALUE-450213 - https://snyk.io/vuln/SNYK-JS-TYPEORM-590152 - https://snyk.io/vuln/SNYK-JS-UNSETVALUE-2400660 - https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381 - https://snyk.io/vuln/npm:adm-zip:20180415 - https://snyk.io/vuln/npm:dustjs-linkedin:20160819 - https://snyk.io/vuln/npm:lodash:20180130 - https://snyk.io/vuln/npm:mem:20180117 The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746
lewk-snyk · Feb 26, 2024 · e3884ed · e3884ed
1 parent 4898a8d
commit e3884ed
Show file tree

Hide file tree

Showing 3 changed files with 14,153 additions and 19,107 deletions.
diff --git a/.snyk b/.snyk
@@ -0,0 +1,52 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-567746:
+    - tap > nyc > istanbul-lib-instrument > babel-types > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: tap > nyc > istanbul-lib-instrument > babel-types > lodash
+    - tap > nyc > istanbul-lib-instrument > babel-generator > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: tap > nyc > istanbul-lib-instrument > babel-generator > lodash
+    - tap > nyc > istanbul-lib-instrument > babel-traverse > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: tap > nyc > istanbul-lib-instrument > babel-traverse > lodash
+    - tap > nyc > istanbul-lib-instrument > babel-template > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: tap > nyc > istanbul-lib-instrument > babel-template > lodash
+    - tap > nyc > istanbul-lib-instrument > babel-generator > babel-types > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: >-
+          tap > nyc > istanbul-lib-instrument > babel-generator > babel-types >
+          lodash
+    - tap > nyc > istanbul-lib-instrument > babel-traverse > babel-types > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: >-
+          tap > nyc > istanbul-lib-instrument > babel-traverse > babel-types >
+          lodash
+    - tap > nyc > istanbul-lib-instrument > babel-template > babel-types > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: >-
+          tap > nyc > istanbul-lib-instrument > babel-template > babel-types >
+          lodash
+    - tap > nyc > istanbul-lib-instrument > babel-template > babel-traverse > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: >-
+          tap > nyc > istanbul-lib-instrument > babel-template > babel-traverse
+          > lodash
+    - tap > nyc > istanbul-lib-instrument > babel-template > babel-traverse > babel-types > lodash:
+        patched: '2024-02-26T17:00:19.078Z'
+        id: SNYK-JS-LODASH-567746
+        path: >-
+          tap > nyc > istanbul-lib-instrument > babel-template > babel-traverse
+          > babel-types > lodash