fix: LEAP-386: Fix axios dependency vulnerability #5229
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
PR fulfills these requirements
[fix|feat|ci|chore|doc]: TICKET-ID: Short description of change made
ex.fix: DEV-XXXX: Removed inconsistent code usage causing intermittent errors
Change has impacts in these area(s)
(check all that apply)
Describe the reason for change
This PR aims to address open medium severity vulnerabilities found in the npm-axios package. The issue was automatically identified and reported by Vanta.
What does this fix?
By updating axios to version 1.6.0, the medium severity vulnerabilities should be resolved, enhancing the security and reliability of the application.
What libraries were added/updated?
axios updated for 1.6.0
Does this change affect performance?
no
Does this change affect security?
no
What alternative approaches were there?
none
What feature flags were used to cover this change?
no
Does this PR introduce a breaking change?
(check only one)
What level of testing was included in the change?
(check all that apply)