[Snyk] Upgrade axios from 1.8.3 to 1.12.2

[graymalkin77]

Snyk has created this PR to upgrade axios from 1.8.3 to 1.12.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.

• The recommended version was released 22 days ago.

---

This is a minor version upgrade for axios. The changes between v1.8.3 and v1.12.2 consist of bug fixes, security patches, and minor feature additions. No breaking changes are documented in this range.

Source: axios GitHub Releases

Notice 🤖: This content was generated using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

---

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Allocation of Resources Without Limits or Throttling SNYK-JS-AXIOS-12613773	666	Proof of Concept

Release notes

Package name: axios

• 1.12.2 - 2025-09-14
  

  Release notes:

  Bug Fixes

  • fetch: use current global fetch instead of cached one when env fetch is not specified to keep MSW support; (#7030) (cf78825)

  Contributors to this release

  • Dmitriy Mozgovoy
  • Noritaka Kobayashi
• 1.12.1 - 2025-09-12
  

  Release notes:

  Bug Fixes

  • types: fixed env config types; (#7020) (b5f26b7)

  Contributors to this release

  • Dmitriy Mozgovoy
• 1.12.0 - 2025-09-11
  

  Release notes:

  Bug Fixes

  • adding build artifacts (9ec86de)
  • dont add dist on release (a2edc36)
  • fetch-adapter: set correct Content-Type for Node FormData (#6998) (a9f47af)
  • node: enforce maxContentLength for data: URLs (#7011) (945435f)
  • package exports (#5627) (aa78ac2)
  • params: removing '[' and ']' from URL encode exclude characters (#3316) (#5715) (6d84189)
  • release pr run (fd7f404)
  • types: change the type guard on isCancel (#5595) (0dbb7fd)

  Features

  • adapter: surface low‑level network error details; attach original error via cause (#6982) (78b290c)
  • fetch: add fetch, Request, Response env config variables for the adapter; (#7003) (c959ff2)
  • support reviver on JSON.parse (#5926) (2a97634), closes #5924
  • types: extend AxiosResponse interface to include custom headers type (#6782) (7960d34)

  Contributors to this release

  • Willian Agostini
  • Dmitriy Mozgovoy
  • khani
  • Ameer Assadi
  • Emiedonmokumo Dick-Boro
  • Zeroday BYTE
  • Jason Saayman
  • 최예찬
  • Gligor Kotushevski
  • Aleksandar Dimitrov
• 1.11.0 - 2025-07-23
  

  Release notes:

  Bug Fixes

  • form-data npm pakcage (#6970) (e72c193)
  • prevent RangeError when using large Buffers (#6961) (a2214ca)
  • types: resolve type discrepancies between ESM and CJS TypeScript declaration files (#6956) (8517aa1)

  Contributors to this release

  • izzy goldman
  • Manish Sahani
  • Noritaka Kobayashi
  • James Nail
  • Tejaswi1305
• 1.10.0 - 2025-06-14
  

  Release notes:

  Bug Fixes

  • adapter: pass fetchOptions to fetch function (#6883) (0f50af8)
  • form-data: convert boolean values to strings in FormData serialization (#6917) (5064b10)
  • package: add module entry point for React Native; (#6933) (3d343b8)

  Features

  • types: improved fetchOptions interface (#6867) (63f1fce)

  Contributors to this release

  • Dmitriy Mozgovoy
  • Noritaka Kobayashi
  • Dimitrios Lazanas
  • Adrian Knapp
  • Howie Zhao
  • Uhyeon Park
  • Sampo Silvennoinen
• 1.9.0 - 2025-04-24
  

  Release notes:

  Bug Fixes

  • core: fix the Axios constructor implementation to treat the config argument as optional; (#6881) (6c5d4cd)
  • fetch: fixed ERR_NETWORK mapping for Safari browsers; (#6767) (dfe8411)
  • headers: allow iterable objects to be a data source for the set method; (#6873) (1b1f9cc)
  • headers: fix getSetCookie by using 'get' method for caseless access; (#6874) (d4f7df4)
  • headers: fixed support for setting multiple header values from an iterated source; (#6885) (f7a3b5e)
  • http: send minimal end multipart boundary (#6661) (987d2e2)
  • types: fix autocomplete for adapter config (#6855) (e61a893)

  Features

  • AxiosHeaders: add getSetCookie method to retrieve set-cookie headers values (#5707) (80ea756)

  Contributors to this release

  • Dmitriy Mozgovoy
  • Jay
  • Willian Agostini
  • George Cheng
  • FatahChan
  • Ionuț G. Stan
• 1.8.4 - 2025-03-19
  

  Release notes:

  Bug Fixes

  • buildFullPath: handle allowAbsoluteUrls: false without baseURL (#6833) (f10c2e0)

  Contributors to this release

  • Marc Hassan
• 1.8.3 - 2025-03-12
  

  Release notes:

  Bug Fixes

  • add missing type for allowAbsoluteUrls (#6818) (10fa70e)
  • xhr/fetch: pass allowAbsoluteUrls to buildFullPath in xhr and fetch adapters (#6814) (ec159e5)

  Contributors to this release

  • Ashcon Partovi
  • StefanBRas
  • Marc Hassan

from axios GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[Copilot]

Pull Request Overview

This PR upgrades the axios dependency from version 1.8.3 to 1.12.2 to address a security vulnerability (SNYK-JS-AXIOS-12613773) related to "Allocation of Resources Without Limits or Throttling." The upgrade spans 7 minor versions and includes bug fixes, security patches, and minor feature additions without breaking changes.

Key changes:

• Security fix for resource allocation vulnerability
• Bug fixes for fetch adapter, FormData handling, and TypeScript types
• New features including improved error handling and JSON parsing support

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[graymalkin77]

🎉 Snyk checks have passed. No issues have been found so far.

✅ security/snyk check is complete. No issues have been found. (View Details)

✅ license/snyk check is complete. No issues have been found. (View Details)

✅ code/snyk check is complete. No issues have been found. (View Details)