UNPKG

769 BPlain TextView Raw
1# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
2version: v1.7.1
3# ignores vulnerabilities until expiry date; change duration by modifying expiry date
4ignore:
5 'npm:parsejson:20170908':
6 - socket.io > socket.io-client > engine.io-client > parsejson:
7 reason: Cannot fix right now
8 expires: '2017-10-27T13:18:19.941Z'
9# patches apply the minimum changes required to fix a vulnerability
10patch:
11 'npm:negotiator:20160616':
12 - socket.io > engine.io > accepts > negotiator:
13 patched: '2016-10-05T20:19:08.338Z'
14 'npm:ws:20160624':
15 - socket.io > socket.io-client > engine.io-client > ws:
16 patched: '2016-10-05T20:19:08.338Z'
17 - socket.io > engine.io > ws:
18 patched: '2016-10-05T20:19:08.338Z'