search

cameri / nostream

A Nostr Relay written in TypeScript
MIT License
729 stars 188 forks source link

[Snyk] Upgrade axios from 1.2.4 to 1.2.5 #211

Closed cameri closed 1 year ago

cameri commented 1 year ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade axios from 1.2.4 to 1.2.5.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **1 version** ahead of your current version. - The recommended version was released **21 days ago**, on 2023-01-26.
Release notes
Package name: axios from axios GitHub release notes
Commit messages
Package name: axios
  • 366161e chore(release): v1.2.5 (#5500)
  • 18c1710 docs: fix GitHub workflow badges (#5462)
  • 580f1e8 fix(types): fixed AxiosHeaders to handle spread syntax by making all methods non-enumerable; (#5499)
Compare
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/cameri/project/2f0c25a2-d08a-45e1-a6f4-84766cbed88d?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/cameri/project/2f0c25a2-d08a-45e1-a6f4-84766cbed88d/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/cameri/project/2f0c25a2-d08a-45e1-a6f4-84766cbed88d/settings/integration?pkg=axios&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)
socket-security[bot] commented 1 year ago

Socket Security Pull Request Report

👍 No new dependency issues detected in pull request

Pull request report summary
Issue Status
Install scripts ✅ 0 issues
Native code ✅ 0 issues
Bin script confusion ✅ 0 issues
Bin script shell injection ✅ 0 issues
Unresolved require ✅ 0 issues
Invalid package.json ✅ 0 issues
HTTP dependency ✅ 0 issues
Git dependency ✅ 0 issues
Potential typo squat ✅ 0 issues
Known Malware ✅ 0 issues
Telemetry ✅ 0 issues
Protestware/Troll package ✅ 0 issues
Bot Commands

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of package-name@version specifiers. e.g. @SocketSecurity ignore foo@1.0.0 bar@2.4.2

Powered by socket.dev

coveralls commented 1 year ago

Pull Request Test Coverage Report for Build 4208221418

Totals Coverage Status
Change from base Build 4208011233: 0.0%
Covered Lines: 1174
Relevant Lines: 1951
💛 - Coveralls
sonarcloud[bot] commented 1 year ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

github-actions[bot] commented 1 year ago

:tada: This PR is included in version 1.22.5 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: