From ab1eecc3084a60ceee1be06e32c1bdc8cc8c4e4b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Fri, 28 Apr 2023 23:47:17 +0000
Subject: [PATCH] fix:
 test/fixtures/qs-package/node_modules/lru-cache/package.json &
 test/fixtures/qs-package/node_modules/lru-cache/.snyk to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
- https://snyk.io/vuln/SNYK-JS-HAWK-2808852
- https://snyk.io/vuln/SNYK-JS-JSYAML-173999
- https://snyk.io/vuln/SNYK-JS-JSYAML-174129
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://snyk.io/vuln/SNYK-JS-LODASH-450202
- https://snyk.io/vuln/SNYK-JS-LODASH-567746
- https://snyk.io/vuln/SNYK-JS-LODASH-608086
- https://snyk.io/vuln/SNYK-JS-LODASH-73638
- https://snyk.io/vuln/SNYK-JS-LODASH-73639
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-1019388
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818
- https://snyk.io/vuln/SNYK-JS-MINIMIST-2429795
- https://snyk.io/vuln/SNYK-JS-MINIMIST-559764
- https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381
- https://snyk.io/vuln/npm:braces:20180219
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:lodash:20180130
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:tunnel-agent:20170305


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:hawk:20160119
- https://snyk.io/vuln/npm:http-signature:20150122
- https://snyk.io/vuln/npm:lodash:20180130
- https://snyk.io/vuln/npm:mime:20170907
- https://snyk.io/vuln/npm:request:20160119
- https://snyk.io/vuln/npm:tunnel-agent:20170305
---
 .../qs-package/node_modules/lru-cache/.snyk   | 25 +++++++++++++++++++
 .../node_modules/lru-cache/package.json       | 14 +++++++----
 2 files changed, 34 insertions(+), 5 deletions(-)
 create mode 100644 test/fixtures/qs-package/node_modules/lru-cache/.snyk

diff --git a/test/fixtures/qs-package/node_modules/lru-cache/.snyk b/test/fixtures/qs-package/node_modules/lru-cache/.snyk
new file mode 100644
index 0000000000..323f9108d4
--- /dev/null
+++ b/test/fixtures/qs-package/node_modules/lru-cache/.snyk
@@ -0,0 +1,25 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:hawk:20160119':
+    - tap > codecov.io > request > hawk:
+        patched: '2023-04-28T23:47:13.467Z'
+  'npm:http-signature:20150122':
+    - tap > codecov.io > request > http-signature:
+        patched: '2023-04-28T23:47:13.467Z'
+  'npm:lodash:20180130':
+    - standard > standard-engine > eslint > inquirer > lodash:
+        patched: '2023-04-28T23:47:13.467Z'
+    - standard > standard-format > esformatter-jsx > babel-core > babel-plugin-proto-to-assign > lodash:
+        patched: '2023-04-28T23:47:13.467Z'
+  'npm:mime:20170907':
+    - tap > codecov.io > request > form-data > mime:
+        patched: '2023-04-28T23:47:13.467Z'
+  'npm:request:20160119':
+    - tap > codecov.io > request:
+        patched: '2023-04-28T23:47:13.467Z'
+  'npm:tunnel-agent:20170305':
+    - tap > codecov.io > request > tunnel-agent:
+        patched: '2023-04-28T23:47:13.467Z'
diff --git a/test/fixtures/qs-package/node_modules/lru-cache/package.json b/test/fixtures/qs-package/node_modules/lru-cache/package.json
index eef5117565..f1e2438a48 100644
--- a/test/fixtures/qs-package/node_modules/lru-cache/package.json
+++ b/test/fixtures/qs-package/node_modules/lru-cache/package.json
@@ -56,12 +56,13 @@
   },
   "dependencies": {
     "pseudomap": "^1.0.1",
-    "yallist": "^2.0.0"
+    "yallist": "^2.0.0",
+    "@snyk/protect": "latest"
   },
   "description": "A cache object that deletes the least-recently-used items.",
   "devDependencies": {
-    "standard": "^5.4.1",
-    "tap": "^5.1.1"
+    "standard": "^6.0.0",
+    "tap": "^14.6.8"
   },
   "directories": {},
   "dist": {
@@ -99,7 +100,10 @@
   },
   "scripts": {
     "posttest": "standard test/*.js lib/*.js",
-    "test": "tap test --branches=100 --functions=100 --lines=100 --statements=100"
+    "test": "tap test --branches=100 --functions=100 --lines=100 --statements=100",
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
   },
-  "version": "4.0.1"
+  "version": "4.0.1",
+  "snyk": true
 }