-
Notifications
You must be signed in to change notification settings - Fork 560
/
.snyk
27 lines (26 loc) · 981 Bytes
/
.snyk
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.25.0
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
ignore:
'snyk:lic:npm:shescape:MPL-2.0':
- '*':
reason: --about lists all dependency licenses which is a requirement of MPL-2.0
expires: 2122-12-14T16:35:38.252Z
created: 2022-11-14T16:35:38.260Z
SNYK-JS-CROSSSPAWN-8303230:
- '*':
reason: No direct upgrade path available
expires: 2025-01-01T00:12:20.523Z
created: 2024-11-08T10:22:20.531Z
SNYK-JS-SOURCEMAPSUPPORT-6112477:
- '*':
reason: Not directely exploitable
expires: 2025-01-01T00:12:20.523Z
created: 2024-11-08T10:22:20.531Z
patch: {}
exclude:
code:
- test/**
# Remove the following line, once we can apply consistent ignores via the Web UIs
- scripts/upgrade-snyk-go-dependencies.go
- release-scripts/write-ls-protocol-version.go