fix: package.json & .snyk to reduce vulnerabilities

snyk-bot · snyk-bot · commit 709294b9d798 · 2017-05-22T00:11:06.000Z
The following vulnerabilities are fixed with a Snyk patch: - https://snyk.io/vuln/npm:ms:20170412 Latest report for sebs/etherscan-api: https://snyk.io/test/github/sebs/etherscan-api
diff --git a/.snyk b/.snyk
@@ -0,0 +1,8 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.7.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:ms:20170412':
+    - mocha > debug > ms:
+        patched: '2017-05-22T00:11:05.815Z'
diff --git a/package.json b/package.json
@@ -13,7 +13,9 @@
     "pages": "node ./scripts/publish-gh.js",
     "postversion": "git push && git push --tags && npm run pages",
     "changelog": "rm ./docs/CHANGELOG.md && changelog https://github.com/sebs/etherscan-api all > ./docs/CHANGELOG.md && git add . && git commit . -m changelog",
-    "build": "npm run test && npm run docs"
+    "build": "npm run test && npm run docs",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "keywords": [
     "ethereum",
@@ -49,6 +51,8 @@
     "jsdoc": "^3.4.3",
     "jshint": "^2.9.4",
     "mocha": "^3.2.0",
-    "restify": "^4.3.0"
-  }
+    "restify": "^4.3.0",
+    "snyk": "^1.30.1"
+  },
+  "snyk": true
 }
