Merge pull request #275 from CloudBoost/snyk-fix-56a525c6

[Snyk] Fix for 19 vulnerable dependency paths

.snyk

@@ -0,0 +1,17 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.8.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:debug:20170905':
+    - nodemailer-mailgun-transport > mailgun-js > debug:
+        patched: '2017-11-21T04:47:12.009Z'
+  'npm:ms:20170412':
+    - nodemailer-mailgun-transport > mailgun-js > debug > ms:
+        patched: '2017-11-21T04:47:12.009Z'
+  'npm:qs:20140806-1':
+    - winston-bishop-slack > winston > request > qs:
+        patched: '2017-11-21T04:47:12.009Z'
+  'npm:request:20160119':
+    - winston-bishop-slack > winston > request:
+        patched: '2017-11-21T04:47:12.009Z'

package.json

@@ -16,7 +16,7 @@
     "body-parser": "^1.12.0",
     "busboy": "^0.2.12",
     "busboy-body-parser": "0.0.10",
-    "connect-redis": "^2.2.0",
+    "connect-redis": "^3.0.0",
     "cookie-parser": "^1.3.4",
     "cookies": "^0.5.0",
     "cors": "^2.7.1",
@@ -30,15 +30,15 @@
     "express-winston": "^1.3.0",
     "fb": "^1.0.2",
     "github": "^0.2.4",
-    "googleapis": "^5.0.0",
+    "googleapis": "^16.0.0",
     "gridfs-stream": "^1.1.1",
-    "grunt": "^0.4.5",
+    "grunt": "^1.0.0",
     "grunt-bumpup": "^0.6.2",
     "grunt-env": "^0.4.4",
     "icg-json-to-xlsx": "^0.2.5",
     "ioredis": "^1.13.0",
     "jimp": "^0.2.21",
-    "jquery": "^2.2.0",
+    "jquery": "^3.0.0",
     "jsdom": "^8.0.4",
     "json2csv": "^3.7.3",
     "json2xlsx": "^0.1.6",
@@ -68,10 +68,16 @@
     "winston": "^1.1.2",
     "winston-bishop-slack": "^0.2.1",
     "winston-loggly": "^1.1.0",
-    "wns": "^0.5.3"
+    "wns": "^0.5.3",
+    "snyk": "^1.49.4"
   },
   "devDependencies": {
     "eslint": "^3.16.1",
     "grunt-eslint": "^19.0.0"
-  }
+  },
+  "scripts": {
+    "snyk-protect": "snyk protect",
+    "prepare": "npm run snyk-protect"
+  },
+  "snyk": true
 }