Add snyk for npm package security (#841)

fhemberger · fen · commit e0fe46531491 · 2016-08-11T14:06:48.000+02:00
* Update depencencies

* Add snyk
diff --git a/.snyk b/.snyk
@@ -0,0 +1,36 @@
+version: v1.5.2
+ignore: {}
+patch:
+  'npm:marked:20150520':
+    - marked:
+        patched: '2016-07-09T09:33:23.222Z'
+    - metalsmith-markdown > marked:
+        patched: '2016-07-09T09:33:23.222Z'
+  'npm:minimatch:20160620':
+    - metalsmith-stylus > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - metalsmith > recursive-readdir > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - metalsmith-prism > metalsmith > recursive-readdir > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - metalsmith-stylus > stylus > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > tar > fstream > rimraf > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > tar-pack > fstream > rimraf > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > tar-pack > fstream-ignore > fstream > rimraf > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > tar-pack > rimraf > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > rimraf > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > tar-pack > tar > fstream > rimraf > glob > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - chokidar > fsevents > node-pre-gyp > tar-pack > fstream-ignore > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+    - metalsmith-collections > minimatch:
+        patched: '2016-07-09T09:33:23.222Z'
+  'npm:tough-cookie:20160722':
+    - chokidar > fsevents > node-pre-gyp > request > tough-cookie:
+        patched: '2016-07-26T18:26:02.202Z'
diff --git a/package.json b/package.json
@@ -13,7 +13,9 @@
     "test": "npm run test:lint && npm run test:unit && npm run test:smoke",
     "test:lint": "standard && htmllint **/*.hbs && stylint layouts/css",
     "test:unit": "tape tests/**/*.test.js | faucet",
-    "test:smoke": "tape tests/*.smoketest.js | faucet"
+    "test:smoke": "tape tests/*.smoketest.js | faucet",
+    "test:snyk": "snyk test",
+    "postinstall": "snyk protect"
   },
   "repository": {
     "type": "git",
@@ -59,6 +61,7 @@
     "request": "2.74.0",
     "require-dir": "0.3.0",
     "semver": "5.3.0",
+    "snyk": "1.17.2",
     "st": "1.2.0",
     "strftime": "0.9.2"
   },
@@ -71,5 +74,6 @@
     "standard": "^7.0.0",
     "stylint": "^1.3.8",
     "tape": "^4.5.1"
-  }
+  },
+  "snyk": true
 }
