From 109a40f6da48c6c4182e78607d58cfe51314dfe2 Mon Sep 17 00:00:00 2001
From: Benjamin Chodoroff <bc@thermitic.net>
Date: Fri, 16 Feb 2018 09:57:16 -0500
Subject: [PATCH] ignore hoek vulnerability

closes #2527

none of our dependencies which depend on hoek have updated to fix this issue

luckily the issue is not relevant to any of our runtime code -- the vulnerable version of hoek is used by babel-cli, node-sass, sqlite3, and webpack -- none of these are runtime deps
(well webpack is sorta runtime but its usage of hoek is only during dev usage (watchpack))
---
 .nsprc | 3 +++
 1 file changed, 3 insertions(+)
 create mode 100644 .nsprc

diff --git a/.nsprc b/.nsprc
new file mode 100644
index 000000000..328de8927
--- /dev/null
+++ b/.nsprc
@@ -0,0 +1,3 @@
+{
+    "exceptions": ["https://nodesecurity.io/advisories/566"]
+}
-- 
GitLab