From 4ff7b6e6f3f78d0f85929f382251a9a10eba048f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 5 Jan 2024 14:47:30 +0000 Subject: [PATCH] fix: client/package.json & client/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6144788 --- client/package-lock.json | 24 +++++++++++++++--------- client/package.json | 2 +- 2 files changed, 16 insertions(+), 10 deletions(-) diff --git a/client/package-lock.json b/client/package-lock.json index 581125f7..3cfc69bc 100644 --- a/client/package-lock.json +++ b/client/package-lock.json @@ -24,7 +24,7 @@ "@types/node": "^16.18.3", "@types/react": "^18.0.25", "@types/react-dom": "^18.0.9", - "axios": "^1.2.1", + "axios": "^1.6.4", "querystring": "^0.2.1", "react": "^18.2.0", "react-dom": "^18.2.0", @@ -4978,10 +4978,11 @@ } }, "node_modules/axios": { - "version": "1.2.2", - "license": "MIT", + "version": "1.6.4", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.6.4.tgz", + "integrity": "sha512-heJnIs6N4aa1eSthhN9M5ioILu8Wi8vmQW9iHQ9NUvfkJb0lEEDUiIdQNAuBtfUt3FxReaKdpQA5DbmMOqzF/A==", "dependencies": { - "follow-redirects": "^1.15.0", + "follow-redirects": "^1.15.4", "form-data": "^4.0.0", "proxy-from-env": "^1.1.0" } @@ -7830,14 +7831,15 @@ "license": "ISC" }, "node_modules/follow-redirects": { - "version": "1.15.2", + "version": "1.15.4", + "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.15.4.tgz", + "integrity": "sha512-Cr4D/5wlrb0z9dgERpUL3LrmPKVDsETIJhaCMeDfuFYcqa5bldGV6wBsAN6X/vxlXQtFBMrXdXxdL8CbDTGniw==", "funding": [ { "type": "individual", "url": "https://github.com/sponsors/RubenVerborgh" } ], - "license": "MIT", "engines": { "node": ">=4.0" }, @@ -19604,9 +19606,11 @@ "version": "4.6.2" }, "axios": { - "version": "1.2.2", + "version": "1.6.4", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.6.4.tgz", + "integrity": "sha512-heJnIs6N4aa1eSthhN9M5ioILu8Wi8vmQW9iHQ9NUvfkJb0lEEDUiIdQNAuBtfUt3FxReaKdpQA5DbmMOqzF/A==", "requires": { - "follow-redirects": "^1.15.0", + "follow-redirects": "^1.15.4", "form-data": "^4.0.0", "proxy-from-env": "^1.1.0" } @@ -21392,7 +21396,9 @@ "version": "3.2.7" }, "follow-redirects": { - "version": "1.15.2" + "version": "1.15.4", + "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.15.4.tgz", + "integrity": "sha512-Cr4D/5wlrb0z9dgERpUL3LrmPKVDsETIJhaCMeDfuFYcqa5bldGV6wBsAN6X/vxlXQtFBMrXdXxdL8CbDTGniw==" }, "for-each": { "version": "0.3.3", diff --git a/client/package.json b/client/package.json index 413f9c6e..fb11703f 100644 --- a/client/package.json +++ b/client/package.json @@ -20,7 +20,7 @@ "@types/node": "^16.18.3", "@types/react": "^18.0.25", "@types/react-dom": "^18.0.9", - "axios": "^1.2.1", + "axios": "^1.6.4", "querystring": "^0.2.1", "react": "^18.2.0", "react-dom": "^18.2.0",