From 1cb8222f47cb27daaeb2317a2f281b8be99a2a88 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 13 Jun 2021 18:48:36 +0000
Subject: [PATCH] fix: nh_graphs/dev/coffee/package.json &
 nh_graphs/dev/coffee/.snyk to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ADMZIP-1065796
- https://snyk.io/vuln/SNYK-JS-BL-608877
- https://snyk.io/vuln/SNYK-JS-ENGINEIO-1056749
- https://snyk.io/vuln/SNYK-JS-GLOBPARENT-1016905
- https://snyk.io/vuln/SNYK-JS-INI-1048974
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://snyk.io/vuln/SNYK-JS-LODASH-450202
- https://snyk.io/vuln/SNYK-JS-LODASH-567746
- https://snyk.io/vuln/SNYK-JS-LODASH-590103
- https://snyk.io/vuln/SNYK-JS-LODASH-608086
- https://snyk.io/vuln/SNYK-JS-LODASH-73638
- https://snyk.io/vuln/SNYK-JS-LODASH-73639
- https://snyk.io/vuln/SNYK-JS-MERGE-1040469
- https://snyk.io/vuln/SNYK-JS-MERGE-1042987
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-1019388
- https://snyk.io/vuln/SNYK-JS-MINIMIST-559764
- https://snyk.io/vuln/SNYK-JS-NODENOTIFIER-1035794
- https://snyk.io/vuln/SNYK-JS-SOCKETIO-1024859
- https://snyk.io/vuln/SNYK-JS-SOCKETIOPARSER-1056752
- https://snyk.io/vuln/SNYK-JS-TRIMNEWLINES-1298042
- https://snyk.io/vuln/SNYK-JS-WS-1296835
- https://snyk.io/vuln/npm:adm-zip:20180415
- https://snyk.io/vuln/npm:braces:20180219
- https://snyk.io/vuln/npm:concat-stream:20160901
- https://snyk.io/vuln/npm:debug:20170905
- https://snyk.io/vuln/npm:engine.io-client:20160426
- https://snyk.io/vuln/npm:hawk:20160119
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:http-signature:20150122
- https://snyk.io/vuln/npm:lodash:20180130
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:ms:20151024
- https://snyk.io/vuln/npm:npmconf:20180512
- https://snyk.io/vuln/npm:qs:20170213
- https://snyk.io/vuln/npm:request:20160119
- https://snyk.io/vuln/npm:semver:20150403
- https://snyk.io/vuln/npm:tunnel-agent:20170305
- https://snyk.io/vuln/npm:ws:20160104
- https://snyk.io/vuln/npm:ws:20160624
- https://snyk.io/vuln/npm:ws:20160920
- https://snyk.io/vuln/npm:ws:20171108


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:request:20160119
- https://snyk.io/vuln/npm:tunnel-agent:20170305
---
 nh_graphs/dev/coffee/.snyk        | 33 +++++++++++++++++++++++++++++++
 nh_graphs/dev/coffee/package.json | 30 +++++++++++++++++-----------
 2 files changed, 51 insertions(+), 12 deletions(-)
 create mode 100644 nh_graphs/dev/coffee/.snyk

diff --git a/nh_graphs/dev/coffee/.snyk b/nh_graphs/dev/coffee/.snyk
new file mode 100644
index 00000000..ed854059
--- /dev/null
+++ b/nh_graphs/dev/coffee/.snyk
@@ -0,0 +1,33 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.19.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hoek:20180212':
+    - karma-phantomjs-launcher > phantomjs > request > hawk > hoek:
+        patched: '2021-06-13T18:48:34.463Z'
+    - karma-phantomjs-launcher > phantomjs > request > hawk > boom > hoek:
+        patched: '2021-06-13T18:48:34.463Z'
+    - karma-phantomjs-launcher > phantomjs > request > hawk > sntp > hoek:
+        patched: '2021-06-13T18:48:34.463Z'
+    - karma-phantomjs-launcher > phantomjs > request > hawk > cryptiles > boom > hoek:
+        patched: '2021-06-13T18:48:34.463Z'
+  'npm:minimatch:20160620':
+    - gulp > vinyl-fs > glob-stream > minimatch:
+        patched: '2021-06-13T18:48:34.463Z'
+    - karma-coverage > ibrik > istanbul > fileset > minimatch:
+        patched: '2021-06-13T18:48:34.463Z'
+    - gulp > vinyl-fs > glob-watcher > gaze > globule > minimatch:
+        patched: '2021-06-13T18:48:34.463Z'
+    - gulp > vinyl-fs > glob-watcher > gaze > globule > glob > minimatch:
+        patched: '2021-06-13T18:48:34.463Z'
+    - karma-coverage > ibrik > fileset > glob > minimatch:
+        patched: '2021-06-13T18:48:34.463Z'
+    - karma-coverage > ibrik > fileset > minimatch:
+        patched: '2021-06-13T18:48:34.463Z'
+  'npm:request:20160119':
+    - karma-phantomjs-launcher > phantomjs > request:
+        patched: '2021-06-13T18:48:34.463Z'
+  'npm:tunnel-agent:20170305':
+    - karma-phantomjs-launcher > phantomjs > request > tunnel-agent:
+        patched: '2021-06-13T18:48:34.463Z'
diff --git a/nh_graphs/dev/coffee/package.json b/nh_graphs/dev/coffee/package.json
index 6b0cf479..34c26ec9 100644
--- a/nh_graphs/dev/coffee/package.json
+++ b/nh_graphs/dev/coffee/package.json
@@ -3,23 +3,29 @@
   "description": "CoffeeScript / JavaScript Graphing Library for Open-eObs using D3.js",
   "author": "Colin Wren <colin@neovahealth.co.uk>",
   "dependencies": {
-  	"gulp": "3.9.0",
-  	"del": "1.1.1",
-    "karma": "0.13.0",
+    "gulp": "4.0.0",
+    "del": "1.2.0",
+    "karma": "6.0.0",
     "gulp-coffeelint": "0.4.0",
-    "gulp-coffee": "2.3.1",
-    "gulp-notify": "2.2.0",
+    "gulp-coffee": "3.0.3",
+    "gulp-notify": "3.0.0",
     "gulp-concat": "2.5.2 ",
-    "jasmine-core":"*",
+    "jasmine-core": "*",
     "karma-jasmine": "0.3.5",
     "karma-junit-reporter": "0.2.2",
-    "karma-phantomjs-launcher": "0.1.4",
-    "phantomjs": "1.9.8",
-    "karma-coverage": "0.2.7",
+    "karma-phantomjs-launcher": "0.2.0",
+    "phantomjs": "1.9.20",
+    "karma-coverage": "2.0.2",
     "karma-nyan-reporter": "0.0.60",
     "karma-html-reporter": "*",
-    "karma-sauce-launcher": "^0.2.14",
+    "karma-sauce-launcher": "^1.2.0",
     "karma-chrome-launcher": "^0.2.2",
-    "sauce-connect-launcher": "^0.14.0"
-  }
+    "sauce-connect-launcher": "^1.0.0",
+    "snyk": "^1.630.0"
+  },
+  "scripts": {
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
+  },
+  "snyk": true
 }
\ No newline at end of file