Skip to content

Patches vulnerability introduced by axios@1.7.3 #515

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Aug 16, 2024
Merged

Patches vulnerability introduced by axios@1.7.3 #515

merged 1 commit into from
Aug 16, 2024

Conversation

@petruki
Copy link
Member

@petruki petruki commented Aug 16, 2024

Upgrade axios@1.7.3 to axios@1.7.4 to fix
✗ Server-side Request Forgery (SSRF) (new) High Severity in axios@1.7.3
introduced by axios@1.7.3

@petruki petruki added security Vulnerability detected patch Updating dependencies labels Aug 16, 2024
@petruki petruki added this to the v1.2.8 milestone Aug 16, 2024
@petruki petruki self-assigned this Aug 16, 2024
@sonarqubecloud
Copy link

sonarqubecloud bot commented Aug 16, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@petruki petruki merged commit 0cfe502 into master Aug 16, 2024
@petruki petruki deleted the staging branch August 16, 2024 02:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@petruki petruki

Labels

patch Updating dependencies security Vulnerability detected

Projects

None yet

Milestone

v1.3.0

Development

Successfully merging this pull request may close these issues.

2 participants

@petruki