[Snyk] Upgrade axios from 0.19.0 to 1.6.8 #5
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade axios from 0.19.0 to 1.6.8. See this package in npm: axios See this project in Snyk: https://app.snyk.io/org/cachiman/project/809d817a-de32-440b-b5a4-7f1ba22e74df?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade axios from 0.19.0 to 1.6.8.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 53 versions ahead of your current version.
The recommended version was released on 3 months ago.
Issues fixed by the recommended upgrade:
SNYK-JS-SEMVER-3247795
SNYK-JS-LOADERUTILS-3043105
SNYK-JS-AJV-584908
SNYK-JS-ELLIPTIC-571484
SNYK-JS-ANSIHTML-1296849
SNYK-JS-FOLLOWREDIRECTS-6141137
SNYK-JS-ASYNC-2441827
SNYK-JS-AXIOS-1579269
SNYK-JS-AXIOS-6032459
SNYK-JS-BROWSERIFYSIGN-6037026
SNYK-JS-DECODEURICOMPONENT-3149970
SNYK-JS-DNSPACKET-1293563
SNYK-JS-NODEFORGE-598677
SNYK-JS-SEMVER-3247795
SNYK-JS-SEMVER-3247795
SNYK-JS-SERIALIZEJAVASCRIPT-536840
SNYK-JS-MINIMIST-559764
SNYK-JS-MINIMIST-559764
SNYK-JS-URLPARSE-2401205
SNYK-JS-EVENTSOURCE-2823375
SNYK-JS-EXPRESS-6474509
SNYK-JS-FOLLOWREDIRECTS-2332181
SNYK-JS-FOLLOWREDIRECTS-6444610
SNYK-JS-AXIOS-1038255
SNYK-JS-HTTPPROXY-569139
SNYK-JS-AXIOS-6124857
SNYK-JS-BROWSERSLIST-1090194
SNYK-JS-COLORSTRING-1082939
SNYK-JS-DOTPROP-543489
SNYK-JS-ELLIPTIC-1064899
SNYK-JS-ELLIPTIC-511941
SNYK-JS-NODENOTIFIER-1035794
npm:debug:20170905
npm:debug:20170905
SNYK-JS-MINIMIST-2429795
SNYK-JS-FOLLOWREDIRECTS-2396346
SNYK-JS-BABELTRAVERSE-5962462
SNYK-JS-SERIALIZEJAVASCRIPT-570062
SNYK-JS-SERIALIZEJAVASCRIPT-6056521
SNYK-JS-SSRI-1246392
SNYK-JS-TAR-1536528
SNYK-JS-URLPARSE-2407770
SNYK-JS-WEBSOCKETEXTENSIONS-570623
SNYK-JS-Y18N-1021887
SNYK-JS-TAR-1536531
SNYK-JS-TAR-1579147
SNYK-JS-INI-1048974
SNYK-JS-IP-6240864
SNYK-JS-TAR-1579152
SNYK-JS-TAR-1579155
SNYK-JS-QS-3153490
SNYK-JS-LODASH-1040724
SNYK-JS-LODASH-567746
SNYK-JS-LODASH-608086
SNYK-JS-LODASH-6139239
SNYK-JS-SOCKJS-575261
SNYK-JS-URLPARSE-2407759
SNYK-JS-URLPARSE-2412697
SNYK-JS-WS-1296835
SNYK-JS-PATHPARSE-1077067
SNYK-JS-POSTCSS-1090595
SNYK-JS-ISSVG-1085627
SNYK-JS-TAR-6476909
SNYK-JS-ISSVG-1243891
SNYK-JS-JSON5-3182856
SNYK-JS-JSON5-3182856
SNYK-JS-LOADERUTILS-3042992
SNYK-JS-LOADERUTILS-3105943
SNYK-JS-LODASH-1018905
SNYK-JS-MINIMATCH-3050818
SNYK-JS-TAR-1536758
SNYK-JS-KINDOF-537849
SNYK-JS-MINIMIST-2429795
Release notes
Package name: axios
-
1.6.8 - 2024-03-15
- AxiosHeaders: fix AxiosHeaders conversion to an object during config merging (#6243) (2656612)
- import: use named export for EventEmitter; (7320430)
- vulnerability: update follow-redirects to 1.15.6 (#6300) (8786e0f)
Jay
Dmitriy Mozgovoy
Mitchell
Emmanuel
Lucas Keller
Aditya Mogili
Miroslav Petrov
-
1.6.7 - 2024-01-25
- capture async stack only for rejections with native error objects; (#6203) (1a08f90)
Dmitriy Mozgovoy
zhoulixiang
-
1.6.6 - 2024-01-24
- fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
- wrap errors to improve async stack trace (#5987) (123f354)
Ilya Priven
Zao Soula
-
1.6.5 - 2024-01-05
- ci: refactor notify action as a job of publish action; (#6176) (0736f95)
- dns: fixed lookup error handling; (#6175) (f4f2b03)
Dmitriy Mozgovoy
Jay
-
1.6.4 - 2024-01-03
- security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)
- security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)
Jay
Dmitriy Mozgovoy
Guy Nesher
-
1.6.3 - 2023-12-26
- Regular Expression Denial of Service (ReDoS) (#6132) (5e7ad38)
Jay
Willian Agostini
Dmitriy Mozgovoy
-
1.6.2 - 2023-11-14
- withXSRFToken: added withXSRFToken option as a workaround to achieve the old
- feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ( #6046 )
Dmitriy Mozgovoy
Ng Choon Khon (CK)
Muhammad Noman
-
1.6.1 - 2023-11-08
- formdata: fixed content-type header normalization for non-standard browser environments; (#6056) (dd465ab)
- platform: fixed emulated browser detection in node.js environment; (#6055) (3dc8369)
Dmitriy Mozgovoy
Fabian Meyer
-
1.6.0 - 2023-10-26
- CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)
- dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)
- types: fix AxiosHeaders types; (#5931) (a1c8ad0)
- CVE 2023 45857 ( #6028 )
Dmitriy Mozgovoy
Valentin Panov
Rinku Chaudhari
-
1.5.1 - 2023-09-26
-
1.5.0 - 2023-08-26
-
1.4.0 - 2023-04-27
-
1.3.6 - 2023-04-19
-
1.3.5 - 2023-04-05
-
1.3.4 - 2023-02-22
-
1.3.3 - 2023-02-13
-
1.3.2 - 2023-02-03
-
1.3.1 - 2023-02-01
-
1.3.0 - 2023-01-31
-
1.2.6 - 2023-01-28
-
1.2.5 - 2023-01-26
-
1.2.4 - 2023-01-24
-
1.2.3 - 2023-01-17
-
1.2.2 - 2022-12-29
-
1.2.1 - 2022-12-05
-
1.2.0 - 2022-11-22
-
1.2.0-alpha.1 - 2022-11-10
-
1.1.3 - 2022-10-15
-
1.1.2 - 2022-10-07
-
1.1.1 - 2022-10-07
-
1.1.0 - 2022-10-06
-
1.0.0 - 2022-10-04
-
1.0.0-alpha.1 - 2022-05-31
-
0.28.1 - 2024-03-28
-
0.28.0 - 2024-02-12
- fix(security): fixed CVE-2023-45857 by backporting
- Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)
- Fixing content-type header repeated #4745
- Fixed timeout error message for HTTP 4738
- Added
- URL params serializer (#4734)
- Fixed toFormData Blob issue on node>v17 #4728
- Adding types for progress event callbacks #4675
- Fixed max body length defaults #4731
- Added data URL support for node.js (#4725)
- Added isCancel type assert (#4293)
- Added the ability for the
- Add
- Allow type definition for axios instance methods (#4224)
- Fixed
- Fixed
- Adding Canceler parameters config and request (#4711)
- fix(types): allow to specify partial default headers for instance creation (#4185)
- Added
- Fixing Z_BUF_ERROR when no content (#4701)
- Fixed race condition on immediate requests cancellation (#4261)
- Added a clear() function to the request and response interceptors object so a user can ensure that all interceptors have been removed from an Axios instance #4248
- Added generic AxiosAbortSignal TS interface to avoid importing AbortController polyfill (#4229)
- Fix TS definition for AxiosRequestTransformer (#4201)
- Use type alias instead of interface for AxiosPromise (#4505)
- Include request and config when creating a CanceledError instance (#4659)
- Added generic TS types for the exposed toFormData helper (#4668)
- Optimized the code that checks cancellation (#4587)
- Replaced webpack with rollup (#4596)
- Added stack trace to AxiosError (#4624)
- Updated AxiosError.config to be optional in the type definition (#4665)
- Removed incorrect argument for NetworkError constructor (#4656)
-
0.27.2 - 2022-04-27
-
0.27.1 - 2022-04-26
-
0.27.0 - 2022-04-25
-
0.26.1 - 2022-03-09
-
0.26.0 - 2022-02-13
-
0.25.0 - 2022-01-18
-
0.24.0 - 2021-10-25
-
0.23.0 - 2021-10-12
-
0.22.0 - 2021-10-01
-
0.21.4 - 2021-09-06
-
0.21.3 - 2021-09-04
-
0.21.2 - 2021-09-04
-
0.21.1 - 2020-12-22
-
0.21.0 - 2020-10-23
-
0.20.0 - 2020-08-21
-
0.20.0-0 - 2020-07-15
-
0.19.2 - 2020-01-22
-
0.19.1 - 2020-01-07
-
0.19.0 - 2019-05-30
from axios GitHub release notesRelease notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Features
withCredentialsbehavior; (#6046) (cff9967)PRs
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
PRs
Contributors to this release
Release notes:
Bug Fixes
withXSRFTokenoption to v0.x (#6091)Backports from v1.x:
axios.formToJSONmethod (#4735)url-encoded-formserializer to respect theformSerializerconfig (#4721)string[]toAxiosRequestHeaderstype (#4322)AxiosErrorstack capturing; (#4718)AxiosErrorstatus code type; (#4717)blobto the list of protocols supported by the browser (#4678)Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: