[Snyk] Fix for 1 vulnerabilities

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:

  • package.json

• Adding or updating a Snyk policy (.snyk) file; this file is required in order to apply Snyk vulnerability patches.
  Find out more.

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:hoek:20180212	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: blipp

The new version differs by 16 commits.

• 2327ecc 3.0.0
• da0f587 Merge pull request #29 from Y-LyN-10/master
• 0a37298 Update node.js versions for Travis CI
• 9a32e0d Merge branch 'master' of github.com:Y-LyN-10/blipp
• 8c4b863 Updated dev dependencies for Hapi v17
• 842ae6d Updated example for Hapi v17
• c67c665 Fixed lib and tests for default strategy
• eb77487 Linted tests
• 241dae5 Updated dependencies, tests are re-written with lab v15 and hapi v17
• 0143f72 Breaking changes: modified to work with Hapi v17
• 91db5cc updates travis and dependencies versions
• 014d160 Update dependencies version
• 53ec665 Merge pull request #21 from johnbrett/patch-1
• 502451d Fixing brackets in the readme
• 3cff28c style
• 0efa75b Merge pull request [Snyk] Fix for 7 vulnerabilities #19 from danielb2/fix.showauth

See the full diff

Package name: catbox-redis

The new version differs by 6 commits.

• 3495d1b 2.0.1
• a2a9afa Merge pull request #47 from j0shua/master
• 829f450 Merge pull request #45 from gergoerdosi/node-v6
• dd5850b Adding flush parameter when calling client.end
• a4e5d93 Test on node v6, update dependencies
• ef85696 2.0.0

See the full diff

Package name: good

The new version differs by 83 commits.

• f0b562e version 7.1.0
• 45606c7 Restored wreck logging. Closes #469. (#514)
• 6584880 Upgrade async. Fixes #515. (#538)
• 265a5ca Update deps. Closes #515
• f957062 Don't create a reporter if no streams were provided. Addresses #534 (#535)
• 9d198f8 update stream example in docs and other minors (#536)
• dfe7912 non breaking change adds responseSentTime. Closes #530 (#533)
• 3bd61be current version shield links to good @ npmjs (#521)
• ae1778b Support functions as modules (#517)
• b8f923e Add request route tags to response event (#516)
• 7a78ec8 Fix previous hapi versions
• 77bae30 Fix hapi v15.0.2 timing errors in tests
• 4a22673 hapi 15. Closes #509
• 2d510b1 handle missing coverage on hapi < 15
• 3f9a36a hapi 15 tests
• 51e8ec5 hapi 15
• 502b961 hapi 15
• 673af3e Changed keys used to identify reporters in example (#508)
• cf9f3fb Update CONTRIBUTING.md
• 65730b1 correct and improve documentation (#505)
• a55e808 Not enough feedback when error. Closes #498 (#499)
• 8561ecc Added .npmignore file. Closes #485 (#496)
• 0c93720 Update LICENSE
• 0434d88 Closes #491. Update tests to code3.

See the full diff

Package name: good-console

The new version differs by 10 commits.

• 9f1d35e version 6.1.2
• ca0982b update deps (#73)
• 595ab69 version 6.1.1
• 75db990 version 6.1.0
• 3e1fdbb Add newline to output (#72)
• f66b5b5 version 6.0.0
• 4db033c Clean up for d7e3e527cd6d6aafaf59606e66fd114a512437ff
• a89a608 Merge pull request #67 from thebergamo/updates
• d7e3e52 refactoring to new features of es6 and new interface of good. Closes #63 Closes #64 Closes #65
• 46c6676 migrate to es6 classes and new good api

See the full diff

Package name: good-loggly

The new version differs by 7 commits.

• dae5977 v3.0.0
• 7a3c5fc rewrite for good v7.x.x ([Snyk] Security upgrade good-loggly from 2.0.0 to 3.0.0 #15)
• aa3f8dc Merge pull request [Snyk] Fix for 1 vulnerabilities #13 from patrickrbc/dev
• bdfaf1b Fix previous commit
• 30f703e Fix Readme
• 6326811 Add Node 5 to travis
• 6667147 remove devDependencies badge

See the full diff

Package name: inert

The new version differs by 23 commits.

• c4f6b07 4.0.0
• d53a0ec Merge pull request #47 from kanongil/confine-file-path
• 7251728 Remove '..' param check which is no longer required. Closes [Snyk] Security upgrade hapi-mongodb from 5.0.0 to 8.0.0 #5
• 0a6b551 Add confine option that confines file responses
• fef2232 Update license date
• ac741b5 Update hoek to 4.x.x
• d751e8d Update travis config to match hapi
• c439c5b Update joi to 8.x.x
• d2998d8 Update devDependencies
• 11ce9bf Merge pull request #56 from prashaantt/clarify
• 9607ea4 Merge pull request #59 from simon-p-r/absolutePath
• 4e3ec4d Merge pull request #61 from kanongil/gzip-range-fix
• bd6a007 Restrict when range request logic is applied. Closes #60
• 3c4cd57 remove hoek.isAbsolutePath for path.isAbsolute
• 5540383 Clarify bad path for directory handler message
• 0b33f1e Update lru-cache to 4.0.x. Closes #53
• 86a12b8 Fix license according to Copyright and license outmoded/hapi-contrib#66
• f5f704d Don't test using the hapi-lts branch
• ef243e1 Additional ES6 style fixes
• cbab9fc Merge branch 'escalant3-es6-and-node4'
• 6614b93 Use ES6 endsWith for better readability
• 90c860a Remove unnecessary memoizing
• b7210a2 Update dependencies. Update codebase to ES6/Node4

See the full diff

Package name: orientjs

The new version differs by 166 commits.

• b8956d2 Bumped to 3.0.0
• 14bf7ae Bumped to 3.0.8/9-Snapshot + orientjs 3.0.0.beta.3
• 09628ac Fixed https://github.com/OrientJS 3.0: Error when using null params orientechnologies/orientjs#335
• ea9dce6 Bumped to 3.0.0-beta.3
• 02617db Fixed decimal type https://github.com/Link Maps Unsupported (Field Type 16) orientechnologies/orientjs#332
• 9ad2a42 Bumped to 3.0.0-beta.2
• f1005c1 Added Support for LinkMap https://github.com/Link Maps Unsupported (Field Type 16) orientechnologies/orientjs#332
• 8149b68 Bumped to 3.0.0-beta.1 and updated ODB on travis
• 267d4b2 Added mock iteration on tree bag
• 324169b Added reconnection on TokenSecurityException
• e2f1ead Added token expiration handling
• 6b1d0a0 changed version to 3.0.0-beta.0
• a1a0eeb Replaced Buffer() with .alloc and .from : https://github.com/Replace Buffer() with Buffer.alloc() orientechnologies/orientjs#321
• 6a6f74f Fixed RidBag Tree deserialization
• f096fd9 Fixed deserialization of Date type
• 1461f57 Added serialization for decimal values
• d2527db Fixed rawExpression on QueryBuilder. Removed paramify of RawExpressions
• f09cd64 Fixed rawExpression test
• ca9fb56 Implemented OrientDBClient#listDatabases
• 18a03f6 Refactor database crud operation within a single _runAsAdmin function
• e487c1f Refactor username/password into options in databases CRUD
• 2d20a8f Restored for now mocha ^2.0.1, caused by https://github.com/this.skip() in before fails to skip tests with nested describe calls mochajs/mocha#2819
• fcc276b Refactor client#create/drop/exists with + Database
• 1bb254d Updated dependencies + Bumped to ODB 3.0.2/3.0.3-SNAPSHOT

See the full diff

With a Snyk patch:

Severity	Priority Score (*)	Issue	Exploit Maturity
	636/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.3	Prototype Pollution npm:hoek:20180212	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic