From 742dcfa3cffcbbd9606eab864c5035b35facb19a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 24 May 2020 04:41:42 +0600
Subject: [PATCH 1/2] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:hawk:20160119
- https://snyk.io/vuln/npm:http-signature:20150122
- https://snyk.io/vuln/npm:mime:20170907
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:request:20160119
- https://snyk.io/vuln/npm:tunnel-agent:20170305
---
 package.json | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/package.json b/package.json
index ca504d78..8a792f42 100644
--- a/package.json
+++ b/package.json
@@ -16,7 +16,9 @@
     "lint": "standard",
     "test": "istanbul cover _mocha",
     "coveralls": "cat ./coverage/lcov.info | coveralls",
-    "postinstall": "chmod +x scripts/init/sysv/guvnor"
+    "postinstall": "chmod +x scripts/init/sysv/guvnor",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "dependencies": {
     "ampersand-array-input-view": "^3.0",
@@ -91,7 +93,8 @@
     "uuid": "^2.0",
     "wantsit": "^2.0",
     "wildemitter": "^1.0",
-    "winston": "^1.0.0"
+    "winston": "^1.0.0",
+    "snyk": "^1.324.0"
   },
   "optionalDependencies": {
     "execSync": "^1.0",
@@ -168,5 +171,6 @@
   "pre-commit": [
     "lint",
     "test"
-  ]
+  ],
+  "snyk": true
 }

From 4c61ada193c8074a385e6e95d3a922bcdcd5ff0d Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 24 May 2020 04:41:43 +0600
Subject: [PATCH 2/2] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:hawk:20160119
- https://snyk.io/vuln/npm:http-signature:20150122
- https://snyk.io/vuln/npm:mime:20170907
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:request:20160119
- https://snyk.io/vuln/npm:tunnel-agent:20170305
---
 .snyk | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 .snyk

diff --git a/.snyk b/.snyk
new file mode 100644
index 00000000..d808acbf
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,23 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.14.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hawk:20160119':
+    - stylizer > request > hawk:
+        patched: '2020-05-23T22:41:40.878Z'
+  'npm:http-signature:20150122':
+    - stylizer > request > http-signature:
+        patched: '2020-05-23T22:41:40.878Z'
+  'npm:mime:20170907':
+    - stylizer > request > form-data > mime:
+        patched: '2020-05-23T22:41:40.878Z'
+  'npm:minimatch:20160620':
+    - stylizer > stylus > glob > minimatch:
+        patched: '2020-05-23T22:41:40.878Z'
+  'npm:request:20160119':
+    - stylizer > request:
+        patched: '2020-05-23T22:41:40.878Z'
+  'npm:tunnel-agent:20170305':
+    - stylizer > request > tunnel-agent:
+        patched: '2020-05-23T22:41:40.878Z'