From 0c25ee173a22ee5fd3ea9cf567d6461dcf21dad1 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 21 Jun 2022 06:39:39 +0000
Subject: [PATCH] fix: packages/app/package.json & packages/app/.snyk to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DOTOBJECT-548905
- https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2332181
- https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2396346
- https://snyk.io/vuln/SNYK-JS-TRIM-1017038


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/SNYK-JS-LODASH-567746
---
 packages/app/.snyk        |  8 ++++++++
 packages/app/package.json | 16 ++++++++++------
 2 files changed, 18 insertions(+), 6 deletions(-)
 create mode 100644 packages/app/.snyk

diff --git a/packages/app/.snyk b/packages/app/.snyk
new file mode 100644
index 00000000000..e7a22ea9dc1
--- /dev/null
+++ b/packages/app/.snyk
@@ -0,0 +1,8 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-567746:
+    - airtable > lodash:
+        patched: '2022-06-21T06:39:23.316Z'
diff --git a/packages/app/package.json b/packages/app/package.json
index bd58f67839c..929c6181ff5 100644
--- a/packages/app/package.json
+++ b/packages/app/package.json
@@ -34,7 +34,9 @@
     "test": "jest --env=jsdom",
     "test:integrations": "jest --config integration-tests/jest.config.json --maxWorkers=3",
     "test:watch": "jest --watch --env=jsdom",
-    "typecheck": "tsc --noEmit -p tsconfig.check.json && tsc --noEmit -p tsconfig.strictNullChecks.json"
+    "typecheck": "tsc --noEmit -p tsconfig.check.json && tsc --noEmit -p tsconfig.strictNullChecks.json",
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
   },
   "jest": {
     "moduleDirectories": [
@@ -94,7 +96,7 @@
     "apollo-link-batch-http": "^1.2.12",
     "apollo-link-context": "^1.0.18",
     "astring": "^1.7.4",
-    "axios": "^0.19.0",
+    "axios": "^0.20.0",
     "babel-code-frame": "^6.26.0",
     "babel-macros": "^2.0.0",
     "babel-plugin-jsx-pragmatic": "^1.0.2",
@@ -121,7 +123,7 @@
     "date-fns": "^2.4.1",
     "date-fns-tz": "^1.0.7",
     "debug": "^2.6.8",
-    "dot-object": "^1.9.0",
+    "dot-object": "^2.1.3",
     "downshift": "^5.0.0",
     "escope": "^3.6.0",
     "eslint-plugin-react-hooks": "4.1.0",
@@ -203,7 +205,7 @@
     "react-input-autosize": "^2.2.1",
     "react-instantsearch": "^5.7.0",
     "react-loadable": "^3.3.1",
-    "react-markdown": "^4.3.1",
+    "react-markdown": "^5.0.0",
     "react-media": "^1.9.2",
     "react-modal": "^3.6.1",
     "react-motion": "^0.5.0",
@@ -244,7 +246,8 @@
     "vue-template-compiler": "^2.6.10",
     "vue-template-es2015-compiler": "^1.9.1",
     "vue3-transpiler": "1.0.0",
-    "xterm": "3.7.0"
+    "xterm": "3.7.0",
+    "@snyk/protect": "latest"
   },
   "devDependencies": {
     "@babel/cli": "^7.5.5",
@@ -371,5 +374,6 @@
     "whatwg-fetch": "^2.0.3",
     "workbox-webpack-plugin": "^3.6.3",
     "worker-loader": "2.0.0"
-  }
+  },
+  "snyk": true
 }