From 9194c36eca64d0968970957d7b7500c979b78b01 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 11 May 2024 02:32:25 +0000
Subject: [PATCH] fix: package.json & .snyk to reduce vulnerabilities

The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:mime:20170907
- https://snyk.io/vuln/npm:qs:20140806-1
- https://snyk.io/vuln/npm:request:20160119
---
 .snyk        | 28 ++++++++++++++++++++++++++++
 package.json | 46 ++++++++++++++++++++++++----------------------
 2 files changed, 52 insertions(+), 22 deletions(-)
 create mode 100644 .snyk

diff --git a/.snyk b/.snyk
new file mode 100644
index 00000000..98ce67cd
--- /dev/null
+++ b/.snyk
@@ -0,0 +1,28 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.1
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:mime:20170907':
+    - popcornflix > mime:
+        patched: '2024-05-11T02:32:23.912Z'
+        id: 'npm:mime:20170907'
+        path: popcornflix > mime
+    - popcornflix > read-torrent > request > mime:
+        patched: '2024-05-11T02:32:23.912Z'
+        id: 'npm:mime:20170907'
+        path: popcornflix > read-torrent > request > mime
+    - popcornflix > read-torrent > request > form-data > mime:
+        patched: '2024-05-11T02:32:23.912Z'
+        id: 'npm:mime:20170907'
+        path: popcornflix > read-torrent > request > form-data > mime
+  'npm:qs:20140806-1':
+    - popcornflix > read-torrent > request > qs:
+        patched: '2024-05-11T02:32:23.912Z'
+        id: 'npm:qs:20140806-1'
+        path: popcornflix > read-torrent > request > qs
+  'npm:request:20160119':
+    - popcornflix > read-torrent > request:
+        patched: '2024-05-11T02:32:23.912Z'
+        id: 'npm:request:20160119'
+        path: popcornflix > read-torrent > request
diff --git a/package.json b/package.json
index 7205320f..e638da67 100644
--- a/package.json
+++ b/package.json
@@ -2,14 +2,10 @@
   "name": "Popcorn-Time",
   "repository": {
     "type": "git",
-    "url": "https://github.com/popcorn-time/popcorn-app.git"
+    "url": "https://github.com/popcorn-time/popcorn-app"
   },
   "main": "app://host/index.html",
   "version": "0.2.0",
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/popcorn-time/popcorn-app"
-  },
   "window": {
     "title": "Popcorn Time",
     "icon": "images/icon.png",
@@ -22,24 +18,25 @@
     "resizable": true
   },
   "dependencies": {
-    "adm-zip" : "git+https://github.com/gpt-modules/adm-zip.git",
-    "cheerio" : "git+https://github.com/gpt-modules/cheerio.git",
-    "clivas" : "git+https://github.com/gpt-modules/clivas.git",
-    "i18n" : "git+https://github.com/gpt-modules/i18n-node.git",
-    "iconv-lite" : "git+https://github.com/gpt-modules/iconv-lite.git",
-    "jschardet" : "git+https://github.com/gpt-modules/jschardet.git",
-    "moviedb" : "git+https://github.com/gpt-modules/moviedb.git",
-    "network-address" : "git+https://github.com/gpt-modules/network-address.git",
-    "node-uuid" : "git+https://github.com/gpt-modules/node-uuid.git",
-    "numeral" : "git+https://github.com/gpt-modules/numeral-js.git",
-    "popcornflix" : "git+https://github.com/popcorn-time/popcornflix.git",
-    "request" : "git+https://github.com/gpt-modules/request.git",
-    "universal-analytics" : "git+https://github.com/gpt-modules/universal-analytics.git",
-    "url" : "git+https://github.com/gpt-modules/url.git",
-    "xmlrpc" : "git+https://github.com/gpt-modules/node-xmlrpc.git",
+    "adm-zip": "git+https://github.com/gpt-modules/adm-zip.git",
+    "cheerio": "git+https://github.com/gpt-modules/cheerio.git",
+    "clivas": "git+https://github.com/gpt-modules/clivas.git",
+    "i18n": "git+https://github.com/gpt-modules/i18n-node.git",
+    "iconv-lite": "git+https://github.com/gpt-modules/iconv-lite.git",
+    "jschardet": "git+https://github.com/gpt-modules/jschardet.git",
+    "moviedb": "git+https://github.com/gpt-modules/moviedb.git",
+    "network-address": "git+https://github.com/gpt-modules/network-address.git",
+    "node-uuid": "git+https://github.com/gpt-modules/node-uuid.git",
+    "numeral": "git+https://github.com/gpt-modules/numeral-js.git",
+    "popcornflix": "git+https://github.com/popcorn-time/popcornflix.git",
+    "request": "git+https://github.com/gpt-modules/request.git",
+    "universal-analytics": "git+https://github.com/gpt-modules/universal-analytics.git",
+    "url": "git+https://github.com/gpt-modules/url.git",
+    "xmlrpc": "git+https://github.com/gpt-modules/node-xmlrpc.git",
     "socket.io": "git+https://github.com/gpt-modules/socket.io.git",
     "express": "git+https://github.com/gpt-modules/express.git",
-    "ip": "git+https://github.com/gpt-modules/node-ip.git"
+    "ip": "git+https://github.com/gpt-modules/node-ip.git",
+    "@snyk/protect": "latest"
   },
   "devDependencies": {
     "grunt": "git+https://github.com/gpt-modules/grunt.git",
@@ -48,5 +45,10 @@
     "grunt-contrib-watch": "git+https://github.com/gpt-modules/grunt-contrib-watch.git",
     "grunt-contrib-compass": "git+https://github.com/gpt-modules/grunt-contrib-compass.git",
     "grunt-contrib-copy": "git+https://github.com/gpt-modules/grunt-contrib-copy.git"
-  }
+  },
+  "scripts": {
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
+  },
+  "snyk": true
 }