cypress-plugins icon indicating copy to clipboard operation
cypress-plugins copied to clipboard

chore(deps): update dependency axios to 0.21.2 [security]

Open renovate[bot] opened this issue 2 years ago • 1 comments

Mend Renovate

This PR contains the following updates:

Package Change
axios 0.18.1 -> 0.21.2

GitHub Vulnerability Alerts

CVE-2020-28168

Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.

CVE-2021-3749

axios is vulnerable to Inefficient Regular Expression Complexity


Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • [ ] If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by Mend Renovate. View repository job log here.

renovate[bot] avatar Jun 09 '22 00:06 renovate[bot]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Updated
cypress-plugins ✅ Ready (Inspect) Visit Preview Jun 9, 2022 at 0:47AM (UTC)

vercel[bot] avatar Jun 09 '22 00:06 vercel[bot]