2018-09-24 08:27:53 +00:00
|
|
|
# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
|
2019-03-08 10:26:46 +00:00
|
|
|
version: v1.13.3
|
2018-09-25 00:16:25 +00:00
|
|
|
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
|
|
|
|
ignore:
|
|
|
|
'npm:braces:20180219':
|
2019-03-08 10:26:46 +00:00
|
|
|
- hexo > hexo-fs > chokidar > anymatch > micromatch > braces:
|
2018-09-25 00:16:25 +00:00
|
|
|
reason: Patch/update unavailable
|
2019-03-08 10:26:46 +00:00
|
|
|
expires: '2019-12-31T00:00:00.000Z'
|
|
|
|
- hexo > hexo-cli > hexo-fs > chokidar > anymatch > micromatch > braces:
|
|
|
|
reason: Patch/update unavailable
|
|
|
|
expires: '2019-12-31T00:00:00.000Z'
|
|
|
|
SNYK-JS-LODASHMERGE-173732:
|
|
|
|
- hexo > cheerio > lodash.merge:
|
2018-09-30 08:31:45 +00:00
|
|
|
reason: Patch/update unavailable
|
2018-12-31 10:56:28 +00:00
|
|
|
expires: '2019-12-31T00:00:00.000Z'
|
2019-03-08 10:26:46 +00:00
|
|
|
patch: {}
|