sendgrid-nodejs icon indicating copy to clipboard operation
sendgrid-nodejs copied to clipboard

Published 20 hours ago verified publisher icon sendgrid

chore: fixed axios vulnerability by upgrading 1.6.8 to 1.7.4

Open jl-yang opened this issue 1 year ago • 1 comments

Fixes

  • this fixes recent CVE-2024-39338 Server-Side Request Forgery in axios (https://github.com/advisories/GHSA-8hc4-vh64-cxmj)

Checklist

  • [x] I acknowledge that all my contributions will be made under the project's license
  • [ ] I have made a material change to the repo (functionality, testing, spelling, grammar)
  • [x] I have read the Contribution Guidelines and my PR follows them
  • [x] I have titled the PR appropriately
  • [x] I have updated my branch with the main branch
  • [ ] I have added tests that prove my fix is effective or that my feature works
  • [ ] I have added the necessary documentation about the functionality in the appropriate .md file
  • [ ] I have added inline documentation to the code I modified

If you have questions, please file a support ticket.

jl-yang avatar Aug 19 '24 16:08 jl-yang

Can this be merged please? 🙏🏻

DinerIsmail avatar Aug 25 '24 10:08 DinerIsmail

Putting in another plug to merge this fix please.

treyreynolds avatar Oct 16 '24 01:10 treyreynolds

Merging this change

tiwarishubham635 avatar Oct 16 '24 11:10 tiwarishubham635

This will be visible in the coming release, scheduled for tomorrow

tiwarishubham635 avatar Oct 16 '24 11:10 tiwarishubham635