From a5b9358933a4438013e9ba024161cb0c78153597 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 30 Aug 2023 15:10:12 +0000
Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:debug:20170905
- https://snyk.io/vuln/npm:extend:20180424
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:ms:20170412
- https://snyk.io/vuln/npm:qs:20170213
- https://snyk.io/vuln/npm:stringstream:20180511
- https://snyk.io/vuln/npm:tough-cookie:20170905
- https://snyk.io/vuln/npm:tunnel-agent:20170305
---
 .snyk        | 63 ++++++++++++++++++++++++++++++++++++++++++++++++++++
 package.json | 10 ++++++---
 2 files changed, 70 insertions(+), 3 deletions(-)
 create mode 100644 .snyk

diff --git a/.snyk b/.snyk
new file mode 100644
index 00000000..3c88c994
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,63 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:debug:20170905':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > tar-pack > debug:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:debug:20170905'
+        path: babel-cli > chokidar > fsevents > node-pre-gyp > tar-pack > debug
+  'npm:extend:20180424':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > extend:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:extend:20180424'
+        path: babel-cli > chokidar > fsevents > node-pre-gyp > request > extend
+  'npm:hoek:20180212':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > hawk > hoek:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:hoek:20180212'
+        path: babel-cli > chokidar > fsevents > node-pre-gyp > request > hawk > hoek
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > hawk > boom > hoek:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:hoek:20180212'
+        path: >-
+          babel-cli > chokidar > fsevents > node-pre-gyp > request > hawk > boom
+          > hoek
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > hawk > sntp > hoek:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:hoek:20180212'
+        path: >-
+          babel-cli > chokidar > fsevents > node-pre-gyp > request > hawk > sntp
+          > hoek
+  'npm:ms:20170412':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > tar-pack > debug > ms:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:ms:20170412'
+        path: babel-cli > chokidar > fsevents > node-pre-gyp > tar-pack > debug > ms
+  'npm:qs:20170213':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > qs:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:qs:20170213'
+        path: babel-cli > chokidar > fsevents > node-pre-gyp > request > qs
+  'npm:stringstream:20180511':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > stringstream:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:stringstream:20180511'
+        path: >-
+          babel-cli > chokidar > fsevents > node-pre-gyp > request >
+          stringstream
+  'npm:tough-cookie:20170905':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > tough-cookie:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:tough-cookie:20170905'
+        path: >-
+          babel-cli > chokidar > fsevents > node-pre-gyp > request >
+          tough-cookie
+  'npm:tunnel-agent:20170305':
+    - babel-cli > chokidar > fsevents > node-pre-gyp > request > tunnel-agent:
+        patched: '2023-08-30T15:10:10.785Z'
+        id: 'npm:tunnel-agent:20170305'
+        path: >-
+          babel-cli > chokidar > fsevents > node-pre-gyp > request >
+          tunnel-agent
diff --git a/package.json b/package.json
index 17cbe397..b87a748c 100644
--- a/package.json
+++ b/package.json
@@ -35,7 +35,8 @@
     "babel-plugin-add-module-exports": "^0.1.1",
     "babel-plugin-transform-runtime": "^6.4.3",
     "babel-preset-es2015": "^6.1.18",
-    "babel-preset-stage-0": "^6.1.18"
+    "babel-preset-stage-0": "^6.1.18",
+    "@snyk/protect": "latest"
   },
   "scripts": {
     "build": "rm -rf lib && babel src --out-dir lib",
@@ -43,7 +44,9 @@
     "lint": "eslint ./",
     "test": "npm run lint && mocha && npm run docs-build",
     "prepublishOnly": "npm run build && npm run docs-build",
-    "release": "release"
+    "release": "release",
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
   },
   "devDependencies": {
     "babel-cli": "^6.2.0",
@@ -63,5 +66,6 @@
     "eslint-plugin-mocha": "^4.8.0",
     "mocha": "^3.2.0",
     "release-script": "^1.0.1"
-  }
+  },
+  "snyk": true
 }