# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.12.0
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
ignore:
  'npm:braces:20180219':
    - '*':
        reason: Patch/update unavailable
        expires: 2018-12-31T00:00:00.000Z
# patches apply the minimum changes required to fix a vulnerability
patch:
  'npm:lodash:20180130':
    - hexo-autonofollow > cheerio > lodash:
        patched: '2018-09-27T12:12:15.086Z'