From b2726bf013cd3889e06e2617bb1ed3a70bdc3791 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 25 Jul 2020 22:29:45 +0000
Subject: [PATCH] fix: examples/exchange-files-in-browser/package.json &
 examples/exchange-files-in-browser/.snyk to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DOTPROP-543489
- https://snyk.io/vuln/SNYK-JS-IPFSBITSWAP-174847
- https://snyk.io/vuln/SNYK-JS-YARGSPARSER-560381


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:lodash:20180130
---
 examples/exchange-files-in-browser/.snyk        | 12 ++++++++++++
 examples/exchange-files-in-browser/package.json | 12 ++++++++----
 2 files changed, 20 insertions(+), 4 deletions(-)
 create mode 100644 examples/exchange-files-in-browser/.snyk

diff --git a/examples/exchange-files-in-browser/.snyk b/examples/exchange-files-in-browser/.snyk
new file mode 100644
index 00000000..b177cc45
--- /dev/null
+++ b/examples/exchange-files-in-browser/.snyk
@@ -0,0 +1,12 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.19.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:lodash:20180130':
+    - ipfs > ipld > ipld-zcash > zcash-bitcore-lib > lodash:
+        patched: '2020-07-25T22:29:39.974Z'
+    - ipfs > ipfs-unixfs-engine > ipld > ipld-zcash > zcash-bitcore-lib > lodash:
+        patched: '2020-07-25T22:29:39.974Z'
+    - ipfs > ipfs-mfs > ipfs-unixfs-engine > ipld > ipld-zcash > zcash-bitcore-lib > lodash:
+        patched: '2020-07-25T22:29:39.974Z'
diff --git a/examples/exchange-files-in-browser/package.json b/examples/exchange-files-in-browser/package.json
index 7c87dbda..bf8e96aa 100644
--- a/examples/exchange-files-in-browser/package.json
+++ b/examples/exchange-files-in-browser/package.json
@@ -4,7 +4,9 @@
   "scripts": {
     "bundle": "browserify public/app.js > public/bundle.js",
     "start": "http-server -c-1 -p 12345 public",
-    "dev": "npm run bundle && npm run start"
+    "dev": "npm run bundle && npm run start",
+    "snyk-protect": "snyk protect",
+    "prepublish": "npm run snyk-protect"
   },
   "license": "MIT",
   "devDependencies": {
@@ -12,7 +14,9 @@
     "http-server": "^0.11.1"
   },
   "dependencies": {
-    "ipfs": "0.30.0",
-    "stream-buffers": "^3.0.1"
-  }
+    "ipfs": "0.41.0",
+    "stream-buffers": "^3.0.1",
+    "snyk": "^1.366.2"
+  },
+  "snyk": true
 }