From 6c89b2aa19f093bb81d3d6c69df23235135f736a Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 8 Dec 2018 06:49:08 +0000
Subject: [PATCH] fix: .snyk & package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-MORGAN-72579
- https://snyk.io/vuln/npm:atob:20180429
- https://snyk.io/vuln/npm:cryptiles:20180710
- https://snyk.io/vuln/npm:debug:20170905
- https://snyk.io/vuln/npm:deep-extend:20180409
- https://snyk.io/vuln/npm:extend:20180424
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:macaddress:20180511
- https://snyk.io/vuln/npm:react-dom:20180802
- https://snyk.io/vuln/npm:sshpk:20180409
- https://snyk.io/vuln/npm:stringstream:20180511
- https://snyk.io/vuln/npm:tough-cookie:20170905
- https://snyk.io/vuln/npm:tunnel-agent:20170305
- https://snyk.io/vuln/npm:ua-parser-js:20180227


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:hoek:20180212
---
 .snyk        | 14 ++++++++++++++
 package.json | 48 ++++++++++++++++++++++++++----------------------
 2 files changed, 40 insertions(+), 22 deletions(-)
 create mode 100644 .snyk

diff --git a/.snyk b/.snyk
new file mode 100644
index 0000000..d7e8edb
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,14 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.13.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hoek:20180212':
+    - webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > hoek:
+        patched: '2018-12-08T06:49:06.379Z'
+    - webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > boom > hoek:
+        patched: '2018-12-08T06:49:06.379Z'
+    - webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > sntp > hoek:
+        patched: '2018-12-08T06:49:06.379Z'
+    - webpack > watchpack > chokidar > fsevents > node-pre-gyp > hawk > cryptiles > boom > hoek:
+        patched: '2018-12-08T06:49:06.379Z'
diff --git a/package.json b/package.json
index f1526c3..8420e82 100644
--- a/package.json
+++ b/package.json
@@ -14,7 +14,9 @@
     "build:clean": "del \"dist/!(.git*|Procfile)**\"",
     "build:copy": "copyfiles -u 1 public/* public/**/* dist",
     "prebuild": "npm run build:clean && npm run build:copy",
-    "build": "NODE_ENV=$BUILD_ENV webpack --config webpack/webpack.config"
+    "build": "NODE_ENV=$BUILD_ENV webpack --config webpack/webpack.config",
+    "snyk-protect": "snyk protect",
+    "prepare": "npm run snyk-protect"
   },
   "devDependencies": {
     "babel-eslint": "^7.1.1",
@@ -64,31 +66,31 @@
     "kew": "^0.7.0",
     "lodash": "^4.17.4",
     "moment": "^2.17.1",
-    "morgan": "^1.7.0",
-    "node-sass": "^4.5.0",
+    "morgan": "^1.9.1",
+    "node-sass": "^4.9.1",
     "normalizr": "^3.0.1",
     "papaparse": "^4.1.2",
     "postcss-flexibility": "^1.1.0",
     "postcss-loader": "^1.3.3",
-    "prop-types": "^15.6.0",
+    "prop-types": "^15.6.1",
     "qs": "^6.4.0",
     "raw-loader": "^0.5.1",
-    "react": "^16.0.0",
-    "react-addons-shallow-compare": "^15.4.2",
+    "react": "^16.3.1",
+    "react-addons-shallow-compare": "^15.6.2",
     "react-async-render": "0.0.2",
-    "react-bootstrap": "^0.31.3",
-    "react-dates": "^8.2.0",
-    "react-dom": "^16.0.0",
-    "react-dropzone": "^3.8.0",
-    "react-fontawesome": "^1.5.0",
-    "react-google-maps": "^9.4.4",
+    "react-bootstrap": "^0.31.5",
+    "react-dates": "^8.2.1",
+    "react-dom": "^16.3.3",
+    "react-dropzone": "^3.13.4",
+    "react-fontawesome": "^1.6.1",
+    "react-google-maps": "^9.4.5",
     "react-helmet": "^5.2.0",
-    "react-hot-loader": "^3.0.0-beta.6",
-    "react-images": "^0.5.14",
-    "react-redux": "^5.0.1",
-    "react-router": "^3.0.0",
+    "react-hot-loader": "^3.1.3",
+    "react-images": "^0.5.17",
+    "react-redux": "^5.0.7",
+    "react-router": "^3.2.1",
     "react-router-redux": "^4.0.7",
-    "react-router-scroll": "^0.4.1",
+    "react-router-scroll": "^0.4.4",
     "react-search-input": "^0.11.3",
     "redux": "^3.6.0",
     "redux-async": "^2.0.1",
@@ -96,18 +98,20 @@
     "redux-persist": "^4.4.2",
     "redux-thunk": "^2.1.0",
     "redux-universal": "0.0.2",
-    "resolve-url-loader": "^2.0.2",
+    "resolve-url-loader": "^2.3.0",
     "sass-loader": "^4.1.1",
     "serialize-javascript": "^1.3.0",
     "style": "0.0.3",
     "style-loader": "^0.14.0",
-    "superagent": "^3.5.0",
+    "superagent": "^3.8.2",
     "superagent-defaults": "^0.1.14",
     "superagent-prefix": "0.0.2",
     "superagent-use": "^0.1.0",
     "url-loader": "^0.5.8",
     "validator": "^6.2.0",
-    "webpack": "^1.14.0",
-    "webpack-isomorphic-tools": "^2.6.5"
-  }
+    "webpack": "^1.15.0",
+    "webpack-isomorphic-tools": "^2.6.5",
+    "snyk": "^1.116.2"
+  },
+  "snyk": true
 }