Merge pull request #83 from intuit/snyk-fix-a1dade62a98fe4245b5d0942852b8d3f

[Snyk] Fix for 1 vulnerabilities

Author: abisalehalliprasan

sample/.snyk

@@ -0,0 +1,10 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.14.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  SNYK-JS-LODASH-567746:
+    - intuit-oauth > winston > async > lodash:
+        patched: '2020-05-01T06:23:47.085Z'
+    - ngrok > request-promise-native > request-promise-core > lodash:
+        patched: '2020-05-01T06:23:47.085Z'

sample/package.json

@@ -4,7 +4,9 @@
   "description": "A sample NodeJs application to demonstrate the use of the client OAuth library",
   "scripts": {
     "start": "node app",
-    "test": "./node_modules/mocha/bin/mocha test/**/*-test.js --reporter spec"
+    "test": "./node_modules/mocha/bin/mocha test/**/*-test.js --reporter spec",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "author": "[email protected]",
   "license": "APACHE",
@@ -17,6 +19,8 @@
     "ejs": "^2.5.2",
     "dotenv": "^5.0.1",
     "ngrok": "^3.2.5",
-    "intuit-oauth": "3.0.0"
-  }
+    "intuit-oauth": "3.0.0",
+    "snyk": "^1.316.1"
+  },
+  "snyk": true
 }