From 3323245574c2ec9a7416d65333b0b832dbf68269 Mon Sep 17 00:00:00 2001
From: Kumar McMillan <kumar.mcmillan@gmail.com>
Date: Tue, 2 Jul 2019 13:23:08 -0500
Subject: [PATCH] Temporarily ignore lodash prototype pollution

The affected packages aren't handling incoming our JSON.
---
 .snyk | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.snyk b/.snyk
index 5a8969329..0229edaae 100644
--- a/.snyk
+++ b/.snyk
@@ -14,4 +14,8 @@ ignore:
     - '*':
         reason: We use http-proxy-middleware in development only and react-scripts does not accept user input to trigger an exploit
         expires: 2019-10-31T00:00:00.000Z
+  SNYK-JS-LODASH-450202:
+    - '*':
+        reason: While developers / XPIs do have the ability to inject JSON into our system, nothing that depends on this exact version of lodash is handling incoming JSON data
+        expires: 2019-08-01T00:00:00.000Z
 patch: {}