From ca413b92843763996db9017a9a78a67381425378 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 28 Mar 2025 06:20:17 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-9403194 --- package-lock.json | 9 +++++---- package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 4c66531..b4e5d4a 100644 --- a/package-lock.json +++ b/package-lock.json @@ -12,7 +12,7 @@ "@stoplight/spectral-core": "^1.12.3", "@stoplight/spectral-ruleset-bundler": "^1.3.0", "@stoplight/spectral-runtime": "^1.1.2", - "axios": "^1.7.7", + "axios": "^1.8.3", "chalk": "^4.1.2", "tmp": "^0.2.2", "yargs": "^17.7.2" @@ -1752,9 +1752,10 @@ } }, "node_modules/axios": { - "version": "1.7.7", - "resolved": "https://registry.npmjs.org/axios/-/axios-1.7.7.tgz", - "integrity": "sha512-S4kL7XrjgBmvdGut0sN3yJxqYzrDOnivkBiN0OFs6hLiUam3UPvswUo0kqGyhqUZGEOytHyumEdXsAkgCOUf3Q==", + "version": "1.8.3", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.8.3.tgz", + "integrity": "sha512-iP4DebzoNlP/YN2dpwCgb8zoCmhtkajzS48JvwmkSkXvPI3DHc7m+XYL5tGnSlJtR6nImXZmdCuN5aP8dh1d8A==", + "license": "MIT", "dependencies": { "follow-redirects": "^1.15.6", "form-data": "^4.0.0", diff --git a/package.json b/package.json index 0abc236..aa96c79 100644 --- a/package.json +++ b/package.json @@ -33,7 +33,7 @@ "@stoplight/spectral-core": "^1.12.3", "@stoplight/spectral-ruleset-bundler": "^1.3.0", "@stoplight/spectral-runtime": "^1.1.2", - "axios": "^1.7.7", + "axios": "^1.8.3", "chalk": "^4.1.2", "tmp": "^0.2.2", "yargs": "^17.7.2"