# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.13.5
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
ignore:
  SNYK-JS-LODASHMERGE-173732:
    - hexo > cheerio > lodash.merge:
        reason: Patch/update unavailable
        expires: '2019-12-31T00:00:00.000Z'
  SNYK-JS-LODASHMERGE-173733:
    - hexo > cheerio > lodash.merge:
        reason: Patch/update unavailable
        expires: '2019-12-31T00:00:00.000Z'
  SNYK-JS-SETVALUE-450213:
  # snapdragon > base > cache-base > set-value
    - '*':
        reason: Patch/update unavailable
        expires: '2019-12-31T00:00:00.000Z'
  SNYK-JS-MIXINDEEP-450212:
  # snapdragon > base > mixin-deep
    - '*':
        reason: Patch/update unavailable
        expires: '2019-12-31T00:00:00.000Z'
patch: {}