From 018ce6e48e1f3d6de342e19e3893180b6f7e1fa9 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 25 Apr 2023 05:51:18 +0000
Subject: [PATCH] fix:
 tools/node_modules/@babel/core/node_modules/color-convert/package.json &
 tools/node_modules/@babel/core/node_modules/color-convert/.snyk to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
- https://snyk.io/vuln/SNYK-JS-GOT-2932019
- https://snyk.io/vuln/SNYK-JS-JSYAML-173999
- https://snyk.io/vuln/SNYK-JS-JSYAML-174129
- https://snyk.io/vuln/SNYK-JS-LODASH-1018905
- https://snyk.io/vuln/SNYK-JS-LODASH-1040724
- https://snyk.io/vuln/SNYK-JS-LODASH-450202
- https://snyk.io/vuln/SNYK-JS-LODASH-567746
- https://snyk.io/vuln/SNYK-JS-LODASH-608086
- https://snyk.io/vuln/SNYK-JS-LODASH-73638
- https://snyk.io/vuln/SNYK-JS-LODASH-73639
- https://snyk.io/vuln/SNYK-JS-LODASHMERGE-173732
- https://snyk.io/vuln/SNYK-JS-LODASHMERGE-173733
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-1019388
- https://snyk.io/vuln/SNYK-JS-MINIMATCH-3050818
- https://snyk.io/vuln/SNYK-JS-TRIMNEWLINES-1298042
- https://snyk.io/vuln/npm:eslint:20180222
- https://snyk.io/vuln/npm:lodash:20180130
- https://snyk.io/vuln/npm:minimatch:20160620


The following vulnerabilities are fixed with a Snyk patch:
- https://snyk.io/vuln/npm:lodash:20180130
---
 .../@babel/core/node_modules/color-convert/.snyk   | 10 ++++++++++
 .../core/node_modules/color-convert/package.json   | 14 +++++++++-----
 2 files changed, 19 insertions(+), 5 deletions(-)
 create mode 100644 tools/node_modules/@babel/core/node_modules/color-convert/.snyk

diff --git a/tools/node_modules/@babel/core/node_modules/color-convert/.snyk b/tools/node_modules/@babel/core/node_modules/color-convert/.snyk
new file mode 100644
index 00000000000000..247c235679f59e
--- /dev/null
+++ b/tools/node_modules/@babel/core/node_modules/color-convert/.snyk
@@ -0,0 +1,10 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+ignore: {}
+# patches apply the minimum changes required to fix a vulnerability
+patch:
+  'npm:lodash:20180130':
+    - xo > babel-eslint > babel-core > babel-plugin-proto-to-assign > lodash:
+        patched: '2023-04-25T05:51:15.148Z'
+    - xo > eslint-plugin-babel > babel-core > babel-plugin-proto-to-assign > lodash:
+        patched: '2023-04-25T05:51:15.148Z'
diff --git a/tools/node_modules/@babel/core/node_modules/color-convert/package.json b/tools/node_modules/@babel/core/node_modules/color-convert/package.json
index dfbc471407ff4c..445b5997047537 100644
--- a/tools/node_modules/@babel/core/node_modules/color-convert/package.json
+++ b/tools/node_modules/@babel/core/node_modules/color-convert/package.json
@@ -7,7 +7,9 @@
   "repository": "Qix-/color-convert",
   "scripts": {
     "pretest": "xo",
-    "test": "node test/basic.js"
+    "test": "node test/basic.js",
+    "prepublish": "npm run snyk-protect",
+    "snyk-protect": "snyk-protect"
   },
   "keywords": [
     "color",
@@ -37,10 +39,12 @@
     }
   },
   "devDependencies": {
-    "chalk": "1.1.1",
-    "xo": "0.11.2"
+    "chalk": "1.1.2",
+    "xo": "0.40.3"
   },
   "dependencies": {
-    "color-name": "1.1.3"
-  }
+    "color-name": "1.1.3",
+    "@snyk/protect": "latest"
+  },
+  "snyk": true
 }