Skip to content

Commit e621b3c

Browse files
committed
chore(deps): bump axios from ^0.21.1 to ^1.9.0
Addresses CVE-2023-45857 (SSRF via forged server-side requests when axios follows redirects with credentials) and CVE-2024-39338 (SSRF bypass via cross-origin redirect). The 0.x line is unsupported; 1.x is the current stable series.
1 parent 8776698 commit e621b3c

1 file changed

Lines changed: 1 addition & 1 deletion

File tree

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -77,7 +77,7 @@
7777
"@types/uuid": "^8.3.0",
7878
"@typescript-eslint/eslint-plugin": "^4.0.0",
7979
"@typescript-eslint/parser": "^4.0.0",
80-
"axios": "^0.21.1",
80+
"axios": "^1.9.0",
8181
"babel-eslint": "^10.0.0",
8282
"babel-jest": "^26.6.3",
8383
"babel-preset-gatsby": "^1.4.0",

0 commit comments

Comments
 (0)