Server [Snyk] Fix for 1 vulnerabilities

[Snyk] Fix for 1 vulnerabilities

Open vertig0ne opened this issue 11 months ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- package.json
- package-lock.json

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	718/1000 Why? Proof of Concept exploit, Recently disclosed, Has a fix available, CVSS 6.5	Information Exposure SNYK-JS-FOLLOWREDIRECTS-6444610	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: axios

The new version differs by 235 commits.

a64050a Releasing 0.21.1
d57cd97 Updating changelog for 0.21.1 release
8b0f373 Use different socket for Win32 test (#3375)
e426910 Protocol not parsed when setting proxy config from env vars (#3070)
c7329fe Hotfix: Prevent SSRF (#3410)
f472e5d Adding a type guard for `AxiosError` (#2949)
7688255 Remove the skipping of the `socket` http test (#3364)
820fe6e Updating axios in types to be lower case (#2797)
94ca24b Releasing 0.21.0
2130a0c Updating changelog for 0.21.0 release
fbdc150 Lock travis to not use node v15 (#3361)
3a8b87d Fixing an issue that type 'null' and 'undefined' is not assignable to validateStatus when typescript strict option is enabled (#3200)
9a78465 Revert "Fixing overwrite Blob/File type as Content-Type in browser. (#1773)" (#3289)
6d05b96 Fix typos (#3309)
fa36737 fix axios.delete ignores config.data (#3282)
b7e954e Fixing node types (#3237)
04d45f2 Fixing requestHeaders.Authorization (#3287)
e8c6e19 docs: Fix simple typo, existant -> existent (#3252)
0d87655 Releasing 0.20.0
cd27741 Updating changelog for 0.20.0 release
ffea034 Releasing 0.20.0-0
fe147fb Updating changlog for 0.20.0 beta release
16aa2ce Fixing response with utf-8 BOM can not parse to json (#2419)
c4300a8 Adding support for URLSearchParams in node (#1900)

Package name: axios-cache-adapter

The new version differs by 102 commits.

b49888c chore(package): Bump to 2.5.0
fa294ee chore(package): Remove es6.object.to-string built-in exclusion and re-build
9046168 List Axios as a peer dependency so it is not bundled twice by co… (#114)
93e2d83 Replace expensive lodash calls with native functions (cont. #115) (#132)
7d5efd9 chore(package): bump version to 2.4.1
2a462d8 chore(typings): Add simple TypeDefinition for RedisStore (#111)
0b6f7bb chore(readme): Update info about browser vs node
5fe855a chore(package): Bump version to 2.4.0
390d968 chore(dist): Rebuild
e62e3aa fix(package): Lock axios version to 0.18.1 (#109)
56a871e Implement RedisStore (#98)
22e7ba0 move `cache-control-esm` to `dependencies` (#108)
e0c6ed7 fix(travis): Fix Ubuntu 16 builds by adding libgconf-2-4 to addons
6d176fd Update README.md (#106)
64ac601 chore(bower): Update version (#102)
547ffa2 chore(package): Update version (#101)
62498a3 Update axios-cache-adapter.d.ts (#100)
70fc386 chore(package): Update version to 2.3.2
0a14086 chore(typings): add .d.ts file in the npm package (#93)
9addeac chore(package): Update version to 2.3.1 and rebuild dist
4d16b7f fix(build): Use forked version of cache-control and change webpack config (#91)
923dccf Add Typescript Support (#87)
af9808c Add class transform to babel config (#80)
a3c0953 fix config.expires setup in case maxAge equal 0 (#83)

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

Learn how to fix vulnerabilities with free interactive lessons:

Mar 15 '24 16:03 vertig0ne