e2e-testsuite-platform icon indicating copy to clipboard operation
e2e-testsuite-platform copied to clipboard
verified publisher icon shopware

Axios update

Open NullDev opened this issue 3 years ago • 0 comments

The test-suit currently uses a vulnerable version of axios. See here:

https://github.com/advisories/GHSA-cph5-m8f7-6c5x

npm audit-log:

axios  <=0.21.1
Severity: high
Incorrect Comparison in axios - https://github.com/advisories/GHSA-cph5-m8f7-6c5x
No fix available
node_modules/axios
  @shopware-ag/e2e-testsuite-platform  *
  Depends on vulnerable versions of axios
  node_modules/@shopware-ag/e2e-testsuite-platform

Not too critical since it's only a testing framework, but a dependency update would still be nice.

Related: https://github.com/shopware/e2e-testsuite-platform/pull/191

NullDev avatar Jan 25 '22 12:01 NullDev