From f06af006a43aefed066b8b80bdbbf07c1aa1ad6f Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Thu, 24 Oct 2024 14:40:06 +0000
Subject: [PATCH] fix:
 workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/package.json
 &
 workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/.snyk
 to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
- https://snyk.io/vuln/SNYK-JS-GETOBJECT-1054932
- https://snyk.io/vuln/SNYK-JS-GRUNT-2635969
- https://snyk.io/vuln/SNYK-JS-GRUNT-2813632
- https://snyk.io/vuln/SNYK-JS-GRUNT-597546
- https://snyk.io/vuln/SNYK-JS-HAWK-2808852
- https://snyk.io/vuln/SNYK-JS-HAWK-6969142
- https://snyk.io/vuln/SNYK-JS-JSYAML-173999
- https://snyk.io/vuln/SNYK-JS-JSYAML-174129
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://snyk.io/vuln/SNYK-JS-LODASH-450202
- https://snyk.io/vuln/SNYK-JS-LODASH-608086
- https://snyk.io/vuln/SNYK-JS-LODASH-6139239
- https://snyk.io/vuln/SNYK-JS-LODASH-73638
- https://snyk.io/vuln/SNYK-JS-LODASH-73639
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-1019388
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818
- https://snyk.io/vuln/SNYK-JS-MINIMIST-559764
- https://snyk.io/vuln/SNYK-JS-UNDERSCORE-1080984
- https://snyk.io/vuln/npm:hoek:20180212
- https://snyk.io/vuln/npm:lodash:20180130
- https://snyk.io/vuln/npm:minimatch:20160620
- https://snyk.io/vuln/npm:tunnel-agent:20170305


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:minimatch:20160620
---
 .../node_modules/jsesc/.snyk                  | 10 ++
 .../node_modules/jsesc/package.json           | 94 ++++++++++---------
 2 files changed, 60 insertions(+), 44 deletions(-)
 create mode 100644 workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/.snyk

diff --git a/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/.snyk b/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/.snyk
new file mode 100644
index 0000000000000..9b6e14b6aece1
--- /dev/null
+++ b/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/.snyk
@@ -0,0 +1,10 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:minimatch:20160620':
+    - grunt > glob > minimatch:
+        patched: '2024-10-24T14:39:59.814Z'
+        id: 'npm:minimatch:20160620'
+        path: grunt > glob > minimatch
diff --git a/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/package.json b/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/package.json
index 1ae439fd68b76..9562db21e912a 100644
--- a/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/package.json
+++ b/workspaces/arborist/test/fixtures/tap-with-yarn-lock/node_modules/jsesc/package.json
@@ -1,46 +1,52 @@
 {
-	"name": "jsesc",
-	"version": "1.3.0",
-	"description": "A JavaScript library for escaping JavaScript strings while generating the shortest possible valid output.",
-	"homepage": "https://mths.be/jsesc",
-	"main": "jsesc.js",
-	"bin": "bin/jsesc",
-	"man": "man/jsesc.1",
-	"keywords": [
-		"string",
-		"escape",
-		"javascript",
-		"tool"
-	],
-	"license": "MIT",
-	"author": {
-		"name": "Mathias Bynens",
-		"url": "https://mathiasbynens.be/"
-	},
-	"repository": {
-		"type": "git",
-		"url": "https://github.com/mathiasbynens/jsesc.git"
-	},
-	"bugs": "https://github.com/mathiasbynens/jsesc/issues",
-	"files": [
-		"LICENSE-MIT.txt",
-		"jsesc.js",
-		"bin/",
-		"man/"
-	],
-	"scripts": {
-		"test": "node tests/tests.js",
-		"build": "grunt template"
-	},
-	"devDependencies": {
-		"coveralls": "^2.11.6",
-		"grunt": "^0.4.5",
-		"grunt-shell": "^1.1.2",
-		"grunt-template": "^0.2.3",
-		"istanbul": "^0.4.2",
-		"qunit-extras": "^1.4.5",
-		"qunitjs": "~1.11.0",
-		"regenerate": "^1.2.1",
-		"requirejs": "^2.1.22"
-	}
+  "name": "jsesc",
+  "version": "1.3.0",
+  "description": "A JavaScript library for escaping JavaScript strings while generating the shortest possible valid output.",
+  "homepage": "https://mths.be/jsesc",
+  "main": "jsesc.js",
+  "bin": "bin/jsesc",
+  "man": "man/jsesc.1",
+  "keywords": [
+    "string",
+    "escape",
+    "javascript",
+    "tool"
+  ],
+  "license": "MIT",
+  "author": {
+    "name": "Mathias Bynens",
+    "url": "https://mathiasbynens.be/"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/mathiasbynens/jsesc.git"
+  },
+  "bugs": "https://github.com/mathiasbynens/jsesc/issues",
+  "files": [
+    "LICENSE-MIT.txt",
+    "jsesc.js",
+    "bin/",
+    "man/"
+  ],
+  "scripts": {
+    "test": "node tests/tests.js",
+    "build": "grunt template",
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
+  },
+  "devDependencies": {
+    "coveralls": "^3.0.10",
+    "grunt": "^1.6.0",
+    "grunt-shell": "^3.0.0",
+    "grunt-template": "^0.2.3",
+    "istanbul": "^0.4.2",
+    "qunit-extras": "^1.4.5",
+    "qunitjs": "~1.11.0",
+    "regenerate": "^1.2.1",
+    "requirejs": "^2.1.22"
+  },
+  "snyk": true,
+  "dependencies": {
+    "@snyk/protect": "latest"
+  }
 }