1 | # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
|
2 | version: v1.7.1
|
3 | # ignores vulnerabilities until expiry date; change duration by modifying expiry date
|
4 | ignore:
|
5 | 'npm:parsejson:20170908':
|
6 | - socket.io > socket.io-client > engine.io-client > parsejson:
|
7 | reason: Cannot fix right now
|
8 | expires: '2017-10-27T13:18:19.941Z'
|
9 | # patches apply the minimum changes required to fix a vulnerability
|
10 | patch:
|
11 | 'npm:negotiator:20160616':
|
12 | - socket.io > engine.io > accepts > negotiator:
|
13 | patched: '2016-10-05T20:19:08.338Z'
|
14 | 'npm:ws:20160624':
|
15 | - socket.io > socket.io-client > engine.io-client > ws:
|
16 | patched: '2016-10-05T20:19:08.338Z'
|
17 | - socket.io > engine.io > ws:
|
18 | patched: '2016-10-05T20:19:08.338Z'
|