Skip to content

Commit

Permalink
fix(deps): bump axios to 1.6.4 (#265)
Browse files Browse the repository at this point in the history 
This PR bumps the Axios package to the latest version to fix some newly discovered vulnerabilities. From the release notes:
- security: fixed formToJSON prototype pollution vulnerability; (axios/axios#6167)
- security: fixed security vulnerability in follow-redirects (axios/axios#6163)

Signed-off-by: Norbert Biczo <pyrooka@users.noreply.github.com>
  • Loading branch information
@pyrooka
pyrooka committed Jan 4, 2024
1 parent 855d2da commit 48c558b
Show file tree
Hide file tree
Showing 3 changed files with 12 additions and 12 deletions.
4 changes: 2 additions & 2 deletions .secrets.baseline
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
"files": "package-lock.json|^.secrets.baseline$",
"lines": null
},
"generated_at": "2023-12-31T18:31:08Z",
"generated_at": "2024-01-04T12:07:27Z",
"plugins_used": [
{
"name": "AWSKeyDetector"
Expand Down Expand Up @@ -96,7 +96,7 @@
"hashed_secret": "bc2f74c22f98f7b6ffbc2f67453dbfa99bce9a32",
"is_secret": false,
"is_verified": false,
"line_number": 111,
"line_number": 118,
"type": "Secret Keyword",
"verified_result": null
}
Expand Down
18 changes: 9 additions & 9 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,7 +74,7 @@
"@types/isstream": "^0.1.0",
"@types/node": "~10.14.19",
"@types/tough-cookie": "^4.0.0",
"axios": "1.6.3",
"axios": "1.6.4",
"camelcase": "^5.3.1",
"debug": "^4.3.4",
"dotenv": "^6.2.0",
Expand Down

0 comments on commit 48c558b

Please sign in to comment.