		@@ -9,4 +9,6 @@ var yaml = require('js-yaml');
		var tryRequire = require('snyk-try-require');
		var filter = require('./filter');

		module.exports = {
		filter: filter,
		demunge: parse.demunge,
		@@ -25,2 +27,12 @@ load: load,

		function attachMethods(policy) {
		var root = path.dirname(policy.__filename);
		policy.filter = function (vulns) {
		return filter(vulns, policy, root);
		};
		policy.save = save.bind(null, policy);
		policy.demunge = parse.demunge.bind(null, policy);
		return policy;
		}

		function loadFromText(text) {
		@@ -36,3 +48,3 @@ return new Promise(function (resolve) {
		resolve(policy);
		});
		}).then(attachMethods);
		}
		@@ -77,3 +89,3 @@
		return policy;
		}).catch(function (error) {
		}).then(attachMethods).catch(function (error) {
		if (options.loose && error.code === 'ENOENT') {
		@@ -163,2 +175,7 @@ return parse({});
		}

		// strip helper functions
		if (typeof object[key] === 'function') {
		delete object[key];
		}
		});
		@@ -165,0 +182,0 @@ return yaml.safeDump(object);

lib/match.js

		@@ -90,8 +90,17 @@ module.exports = {

		if (target.name === fromPkg.name && semver.valid(fromPkg.version) &&
		semver.satisfies(fromPkg.version, pkgVersion)) {
		debugPolicy('semver match');
		return true;
		// shortcut version match, if it's exact, then skip the semver check
		if (target.name === fromPkg.name) {
		if (fromPkg.version === pkgVersion) {
		debugPolicy('exact version match');
		return true;
		}

		if (semver.valid(fromPkg.version) &&
		semver.satisfies(fromPkg.version, pkgVersion)) {
		debugPolicy('semver match');
		return true;
		}
		}


		debugPolicy('failed match');
		@@ -98,0 +107,0 @@

package.json

.nyc_output/3103.json

.nyc_output/3110.json

.nyc_output/3120.json

.nyc_output/3126.json

.nyc_output/3132.json

.nyc_output/3142.json

.nyc_output/3152.json

travis_after_all.py

.travis.yml

Sorry, the diff of this file is not supported yet

snyk-policy - npm Package Compare versions

New alerts