From 296ea6e77c5f585df06769729575ad74a448d196 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 9 Oct 2022 18:36:21 +0000
Subject: [PATCH] fix: site/package.json, site/package-lock.json & site/.snyk
 to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/SNYK-JS-LODASH-567746
---
 site/.snyk             | 10 +++++++++-
 site/package-lock.json |  5 +++++
 site/package.json      | 10 +++++++---
 3 files changed, 21 insertions(+), 4 deletions(-)

diff --git a/site/.snyk b/site/.snyk
index e200738..7937fdc 100644
--- a/site/.snyk
+++ b/site/.snyk
@@ -1,5 +1,5 @@
 # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
-version: v1.14.1
+version: v1.25.0
 ignore: {}
 # patches apply the minimum changes required to fix a vulnerability
 patch:
@@ -50,3 +50,11 @@ patch:
         patched: '2020-05-22T04:10:37.498Z'
     - react-contentful > contentful > lodash:
         patched: '2020-05-22T04:10:37.498Z'
+    - react-scripts > @typescript-eslint/parser > @typescript-eslint/typescript-estree > lodash:
+        patched: '2022-10-09T18:36:07.063Z'
+    - react-scripts > eslint > @eslint/eslintrc > lodash:
+        patched: '2022-10-09T18:36:07.063Z'
+    - react-scripts > eslint-plugin-testing-library > @typescript-eslint/experimental-utils > @typescript-eslint/typescript-estree > lodash:
+        patched: '2022-10-09T18:36:07.063Z'
+    - react-scripts > jest > @jest/core > jest-config > jest-environment-jsdom > jsdom > request-promise-native > request-promise-core > lodash:
+        patched: '2022-10-09T18:36:07.063Z'
diff --git a/site/package-lock.json b/site/package-lock.json
index 8f6f9ee..d4c2931 100644
--- a/site/package-lock.json
+++ b/site/package-lock.json
@@ -1892,6 +1892,11 @@
         "@sinonjs/commons": "^1.7.0"
       }
     },
+    "@snyk/protect": {
+      "version": "1.1025.0",
+      "resolved": "https://registry.npmjs.org/@snyk/protect/-/protect-1.1025.0.tgz",
+      "integrity": "sha512-RK9tY2Aqujv5l9e/5nE4yiTilk8vxyB99VtJJ/6p9TZYhddCVQUUv+PNenhVVO3jkSD8/3gLWbPakIvQsFKynA=="
+    },
     "@surma/rollup-plugin-off-main-thread": {
       "version": "1.4.2",
       "resolved": "https://registry.npmjs.org/@surma/rollup-plugin-off-main-thread/-/rollup-plugin-off-main-thread-1.4.2.tgz",
diff --git a/site/package.json b/site/package.json
index 8bae7b0..996c4f7 100644
--- a/site/package.json
+++ b/site/package.json
@@ -11,14 +11,17 @@
     "react-redux": "^7.2.2",
     "react-router-dom": "^5.2.0",
     "react-scripts": "^4.0.1",
-    "redux": "^4.0.5"
+    "redux": "^4.0.5",
+    "@snyk/protect": "latest"
   },
   "scripts": {
     "start": "react-scripts start",
     "build": "react-scripts build",
     "build:docs": "react-scripts build && rm -rf ../docs && mv build ../docs",
     "test": "react-scripts test",
-    "eject": "react-scripts eject"
+    "eject": "react-scripts eject",
+    "prepare": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
   },
   "eslintConfig": {
     "extends": "react-app"
@@ -31,5 +34,6 @@
   ],
   "localDependencies": {
     "react-contentful": ".."
-  }
+  },
+  "snyk": true
 }