fix: package.json, package-lock.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-VUEAPOLLO-474013 - https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381 The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/SNYK-JS-LODASH-567746
matrunchyk · May 8, 2020 · 4558307 · 4558307
1 parent d6f5801
commit 4558307
Showing 1 changed file with 9 additions and 5 deletions.
diff --git a/package.json b/package.json
@@ -39,15 +39,18 @@
     "test:watch": "jest -w",
     "danger": "danger",
     "publish-github": "npm publish --registry https://npm.pkg.github.com/@matrunchyk",
-    "release": "release-it"
+    "release": "release-it",
+    "snyk-protect": "snyk protect",
+    "prepare": "npm run snyk-protect"
   },
   "dependencies": {
     "collect.js": "^4.18.1",
     "graphql": "^14.5.8",
     "graphql-tag": "^2.10.1",
     "lodash.camelcase": "^4.3.0",
     "lodash.clonedeep": "^4.5.0",
-    "uuid": "^3.3.3"
+    "uuid": "^3.3.3",
+    "snyk": "^1.319.2"
   },
   "devDependencies": {
     "@commitlint/config-conventional": "^8.3.4",
@@ -70,11 +73,11 @@
     "husky": "^4.2.5",
     "jest": "^24.9.0",
     "release-it": "^13.5.5",
-    "ts-jest": "^24.1.0",
+    "ts-jest": "^25.3.0",
     "ts-node": "^8.4.1",
     "typescript": "^3.6.4",
     "vue": "^2.6.10",
-    "vue-apollo": "^3.0.0-rc.7"
+    "vue-apollo": "^3.0.0"
   },
   "peerDependencies": {
     "apollo-client": "^2.6.4",
@@ -112,5 +115,6 @@
     "hooks": {
       "commit-msg": "commitlint -E HUSKY_GIT_PARAMS"
     }
-  }
+  },
+  "snyk": true
 }