From d21afba45acb59a14d6164b8d29ee72cafd65b60 Mon Sep 17 00:00:00 2001
From: John McLear <john@mclear.co.uk>
Date: Thu, 29 Oct 2020 18:07:36 +0000
Subject: [PATCH] security: lockfile lint check (#4446)

---
 .travis.yml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.travis.yml b/.travis.yml
index 21d37ba55..c18b46d70 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -75,6 +75,11 @@ jobs:
         - "export GIT_HASH=$(git rev-parse --verify --short HEAD)"
       script:
         - "tests/frontend/travis/runner.sh"
+    - name: "Lint test package-lock.json"
+      install:
+        - "npm install lockfile-lint"
+      script:
+        - npx lockfile-lint --path src/package-lock.json --validate-https --allowed-hosts npm
     - name: "Run the Backend tests with Plugins"
       install:
         - "bin/installDeps.sh"