From e185bdfef0434320414bb930852ca7f970dd86f4 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 4 Oct 2019 00:02:27 +0000
Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/SNYK-JS-HTTPSPROXYAGENT-469131
---
 .snyk        | 8 +++++++-
 package.json | 8 +++++---
 2 files changed, 12 insertions(+), 4 deletions(-)

diff --git a/.snyk b/.snyk
index 361bd6fe7c..0867b5855a 100644
--- a/.snyk
+++ b/.snyk
@@ -16,4 +16,10 @@ ignore:
     - update-notifier > boxen > term-size > execa:
         reason: None given
         expires: '2019-05-31T17:15:04.209Z'
-patch: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-HTTPSPROXYAGENT-469131:
+    - proxy-agent > https-proxy-agent:
+        patched: '2019-10-04T00:02:26.091Z'
+    - proxy-agent > pac-proxy-agent > https-proxy-agent:
+        patched: '2019-10-04T00:02:26.091Z'
diff --git a/package.json b/package.json
index 9ab85ff29a..e828441626 100644
--- a/package.json
+++ b/package.json
@@ -27,14 +27,15 @@
     "eslint": "eslint -c .eslintrc src",
     "find-circular": "npm run build && madge --circular ./dist",
     "tslint": "tslint --project tsconfig.json --format stylish --exclude **/src/**/*.js",
-    "prepare": "npm run build",
+    "prepare": "npm run snyk-protect && npm run build",
     "tap": "tap test/*.test.* test/acceptance/*.test.* test/system/*.test.* -Rspec --timeout=300 --node-arg=-r --node-arg=ts-node/register",
     "test": "npm run test-common && npm run tap",
     "test-common": "npm run check-tests && npm run build && npm run lint && node --require ts-node/register src/cli test --org=snyk",
     "lint": "npm run eslint && npm run tslint",
     "check-tests": "! grep 'test\\.only' test/*.test.js -n",
     "snyk-auth": "node --require ts-node/register src/cli auth $SNYK_API_KEY",
-    "snyk-auth-windows": "node --require ts-node/register src/cli auth %SNYK_API_KEY%"
+    "snyk-auth-windows": "node --require ts-node/register src/cli auth %SNYK_API_KEY%",
+    "snyk-protect": "snyk protect"
   },
   "keywords": [
     "security",
@@ -90,7 +91,8 @@
     "tempfile": "^2.0.0",
     "then-fs": "^2.0.0",
     "update-notifier": "^2.5.0",
-    "uuid": "^3.3.2"
+    "uuid": "^3.3.2",
+    "snyk": "^1.230.5"
   },
   "devDependencies": {
     "@types/chalk": "^2.2.0",