From bb134f92f68e673784cdadc66607db36ce28f3a3 Mon Sep 17 00:00:00 2001
From: snyk-bot <admin+snyk-bot@snyk.io>
Date: Fri, 2 Feb 2018 10:11:16 +0000
Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/npm:angular:20171018
- https://snyk.io/vuln/npm:angular:20150315
- https://snyk.io/vuln/npm:angular:20161101
- https://snyk.io/vuln/npm:tunnel-agent:20170305
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:ecstatic:20160809
- https://snyk.io/vuln/npm:debug:20170905
- https://snyk.io/vuln/npm:ms:20170412
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:ms:20151024
- https://snyk.io/vuln/npm:ws:20160920
- https://snyk.io/vuln/npm:ws:20171108
- https://snyk.io/vuln/npm:engine.io-client:20160426
- https://snyk.io/vuln/npm:ws:20160104
- https://snyk.io/vuln/npm:ws:20160624
- https://snyk.io/vuln/npm:growl:20160721
- https://snyk.io/vuln/npm:mime:20170907


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:ms:20170412
- https://snyk.io/vuln/npm:qs:20170213


The following vulnerabilities are ignored:
- https://snyk.io/vuln/npm:fresh:20170908
- https://snyk.io/vuln/npm:parsejson:20170908
- https://snyk.io/vuln/npm:shelljs:20140723

Latest report for operationcode/mean-dash:
https://snyk.io/test/github/operationcode/mean-dash
---
 .snyk        | 38 ++++++++++++++++++++++++++++++++++++--
 package.json | 16 ++++++++--------
 2 files changed, 44 insertions(+), 10 deletions(-)

diff --git a/.snyk b/.snyk
index 9657959..78ca23d 100644
--- a/.snyk
+++ b/.snyk
@@ -1,6 +1,19 @@
 # Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
-version: v1.7.1
-ignore: {}
+version: v1.10.1
+# ignores vulnerabilities until expiry date; change duration by modifying expiry date
+ignore:
+  'npm:fresh:20170908':
+    - browser-sync > serve-static > send > fresh:
+        reason: None given
+        expires: '2018-03-04T10:11:15.865Z'
+  'npm:parsejson:20170908':
+    - karma > socket.io > socket.io-client > engine.io-client > parsejson:
+        reason: None given
+        expires: '2018-03-04T10:11:15.865Z'
+  'npm:shelljs:20140723':
+    - jshint > shelljs:
+        reason: None given
+        expires: '2018-03-04T10:11:15.866Z'
 # patches apply the minimum changes required to fix a vulnerability
 patch:
   'npm:debug:20170905':
@@ -42,3 +55,24 @@ patch:
         patched: '2017-09-28T00:03:35.919Z'
     - browser-sync > socket.io > socket.io-adapter > socket.io-parser > debug:
         patched: '2017-09-28T00:03:35.919Z'
+  'npm:minimatch:20160620':
+    - gulp > vinyl-fs > glob-stream > minimatch:
+        patched: '2018-02-02T10:11:15.877Z'
+    - gulp > vinyl-fs > glob-watcher > gaze > globule > minimatch:
+        patched: '2018-02-02T10:11:15.877Z'
+    - gulp > vinyl-fs > glob-watcher > gaze > globule > glob > minimatch:
+        patched: '2018-02-02T10:11:15.877Z'
+  'npm:ms:20170412':
+    - browser-sync > connect > debug > ms:
+        patched: '2018-02-02T10:11:15.877Z'
+    - browser-sync > connect > finalhandler > debug > ms:
+        patched: '2018-02-02T10:11:15.877Z'
+    - browser-sync > serve-index > debug > ms:
+        patched: '2018-02-02T10:11:15.877Z'
+    - browser-sync > serve-static > send > ms:
+        patched: '2018-02-02T10:11:15.877Z'
+    - browser-sync > serve-static > send > debug > ms:
+        patched: '2018-02-02T10:11:15.877Z'
+  'npm:qs:20170213':
+    - browser-sync > qs:
+        patched: '2018-02-02T10:11:15.877Z'
diff --git a/package.json b/package.json
index 8499757..aa1eddc 100644
--- a/package.json
+++ b/package.json
@@ -28,7 +28,7 @@
   },
   "homepage": "https://github.com/OperationCode/mean-dash#readme",
   "dependencies": {
-    "angular": "1.5.0",
+    "angular": "1.6.7",
     "angular-messages": "1.5.0",
     "angular-mocks": "1.5.0",
     "angular-route": "1.5.0",
@@ -40,19 +40,19 @@
     "body-parser": "^1.17.1",
     "browser-sync": "^2.18.8",
     "chai": "^3.5.0",
-    "coveralls": "^2.12.0",
+    "coveralls": "^3.0.0",
     "css-loader": "^0.9.1",
     "express": "^4.15.2",
     "file-loader": "^0.8.1",
-    "gulp": "^3.9.1",
+    "gulp": "^4.0.0",
     "gulp-rename": "^1.2.2",
     "gulp-template": "^4.0.0",
-    "http-server": "^0.9.0",
+    "http-server": "^0.10.0",
     "istanbul": "^0.4.5",
     "js-yaml": "^3.8.2",
     "jshint": "2.9.3",
     "jshint-loader": "^0.8.3",
-    "karma": "0.13.5",
+    "karma": "2.0.0",
     "karma-chai": "^0.1.0",
     "karma-chrome-launcher": "^0.1.7",
     "karma-mocha": "^0.1.10",
@@ -61,7 +61,7 @@
     "lodash": "^4.17.4",
     "log-driver": "^1.2.5",
     "minimist": "^1.2.0",
-    "mocha": "^3.2.0",
+    "mocha": "^4.0.0",
     "mocha-lcov-reporter": "^1.3.0",
     "ng-annotate-loader": "^0.1.1",
     "nib": "^1.1.0",
@@ -74,12 +74,12 @@
     "sinon-restore": "^1.0.1",
     "spec": "^1.0.1",
     "style-loader": "^0.8.3",
-    "url-loader": "^0.5.5",
+    "url-loader": "^0.6.0",
     "webpack": "^2.3.2",
     "webpack-core": "^0.5.0",
     "webpack-dev-server": "^1.7.0",
     "webpack-stream": "^3.2.0",
-    "snyk": "^1.41.1"
+    "snyk": "^1.69.5"
   },
   "devDependencies": {
     "assert": "^1.4.1",