[Snyk] Security upgrade @geshan/axrio from 1.0.1 to 1.1.0

[geshan]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	616/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.9	Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	No	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	No	Proof of Concept
	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	No	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-6124857	No	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Prototype Pollution SNYK-JS-AXIOS-6144788	No	No Known Exploit
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	No	Proof of Concept
	344/1000 Why? Has a fix available, CVSS 2.6	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2396346	No	No Known Exploit
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Improper Input Validation SNYK-JS-FOLLOWREDIRECTS-6141137	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Server-Side Request Forgery (SSRF)
🦉 Regular Expression Denial of Service (ReDoS)
🦉 Cross-site Request Forgery (CSRF)
🦉 More lessons are available in Snyk Learn

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/@geshan/axrio@1.1.0	Transitive: environment, eval, filesystem, network, shell, unsafe	+57	56.5 MB	geshan
npm/@sentry-internal/tracing@7.102.0	network	+3	4.67 MB	sentry-bot
npm/@sentry/core@7.102.0	Transitive: network	+2	3.47 MB	sentry-bot
npm/@sentry/node@7.102.0	environment, filesystem, network, shell, unsafe	+4	6.64 MB	sentry-bot
npm/@sentry/types@7.102.0	None	0	308 kB	sentry-bot
npm/@sentry/utils@7.102.0	network	+1	1.58 MB	sentry-bot
npm/asynckit@0.4.0	None	0	27.4 kB	alexindigo
npm/axios@1.6.7	network Transitive: environment, filesystem	+8	2.21 MB	jasonsaayman
npm/boolean@3.2.0	None	0	12.5 kB	thenativeweb-admin
npm/combined-stream@1.0.8	None	+1	19.5 kB	alexindigo
npm/define-data-property@1.1.4	Transitive: eval	+8	179 kB	ljharb
npm/define-properties@1.2.1	Transitive: eval	+11	230 kB	ljharb
npm/delayed-stream@1.0.0	None	0	8.02 kB	apechimp
npm/detect-node@2.1.0	None	0	2.76 kB	iliakan
npm/es-define-property@1.0.0	Transitive: eval	+6	141 kB	ljharb
npm/es-errors@1.3.0	None	0	12.3 kB	ljharb
npm/es6-error@4.1.1	None	0	9.86 kB	bjy
npm/escape-string-regexp@4.0.0	None	0	3.79 kB	sindresorhus
npm/follow-redirects@1.15.5	network	0	29.4 kB	rubenverborgh
npm/form-data@4.0.0	filesystem, network	+5	314 kB	niftylettuce
npm/function-bind@1.1.2	None	0	31.4 kB	ljharb
npm/get-intrinsic@1.2.4	eval	+5	129 kB	ljharb
npm/global-agent@3.0.0	environment, network Transitive: eval	+27	759 kB	gajus
npm/globalthis@1.0.3	Transitive: eval	+12	252 kB	ljharb
npm/gopd@1.0.1	Transitive: eval	+6	137 kB	ljharb
npm/has-property-descriptors@1.0.2	Transitive: eval	+7	152 kB	ljharb
npm/has-proto@1.0.3	None	0	12 kB	ljharb
npm/has-symbols@1.0.3	None	0	20.6 kB	ljharb
npm/hasown@2.0.1	None	+1	42.6 kB	ljharb
npm/json-stringify-safe@5.0.1	None	0	12.7 kB	isaacs
npm/lru-cache@6.0.0	None	+1	30.4 kB	isaacs
npm/matcher@3.0.0	None	+1	12.6 kB	sindresorhus
npm/mime-db@1.52.0	None	0	206 kB	dougwilson
npm/mime-types@2.1.35	None	+1	224 kB	dougwilson
npm/object-keys@1.1.1	None	0	26.5 kB	ljharb
npm/proxy-from-env@1.1.0	environment	0	29.5 kB	rob-w
npm/roarr@2.15.4	environment Transitive: eval	+18	392 kB	gajus
npm/semver-compare@1.0.0	None	0	4.05 kB	substack
npm/semver@7.6.0	None	+2	125 kB	npm-cli-ops
npm/serialize-error@7.0.1	None	+1	95.4 kB	sindresorhus
npm/snyk@1.1280.1	Transitive: environment, eval, filesystem, network, shell, unsafe	+33	51.7 MB	snyk-admin
npm/sprintf-js@1.1.3	None	0	39.9 kB	alexei
npm/type-fest@0.13.1	None	0	88.5 kB	sindresorhus
npm/yallist@4.0.0	None	0	14.8 kB	isaacs

🚮 Removed packages: npm/@geshan/axrio@1.0.1, npm/axios@0.19.0, npm/debug@3.1.0, npm/follow-redirects@1.5.10, npm/is-buffer@2.0.4, npm/ms@2.0.0

View full report↗︎