search

eco-stake / restake

Auto-compounder script for Cosmos Validators using REStake
https://restake.app
MIT License
356 stars 307 forks source link

Update Axios dep to v1.3.4 #713

Closed s4bs closed 1 year ago

s4bs commented 1 year ago

NPMAudit is failing with the following vulnerabilities:

==== NPMAudit v6.14.8: FAILED in 2.68s

 ~~ Scanner Logs:

  ┌─────────┬──────────────────┬──────────────────┬──────┬──────────────────────────────────────────
  ─┬──────┬─────┐
  │ ID      │ Module           │ Title            │ Sev. │ URL
   │ Prod │ Ex. │
  ├─────────┼──────────────────┼──────────────────┼──────┼──────────────────────────────────────────
  ─┼──────┼─────┤
  │ 1088828 │ decode-uri-comp~ │ decode-uri-comp~ │ low  │ github.com/advisories/GHSA-w573-4hg7-7wgq
   │ yes  │ no  │
  │ 1089547 │ axios            │ axios Inefficie~ │ high │ github.com/advisories/GHSA-cph5-m8f7-6c5x
   │ yes  │ no  │
  │ 1091148 │ json5            │ Prototype Pollu~ │ high │ github.com/advisories/GHSA-9c47-m6qq-7p4h
   │ yes  │ no  │
  └─────────┴──────────────────┴──────────────────┴──────┴──────────────────────────────────────────
  ─┴──────┴─────┘

This PR updates the axios dependency to v1.3.4.

Testing

npm start runs and successfully renders the UI.

tombeynon commented 1 year ago

Thanks for this, I'm just about to split the REStake UI into a dedicated repo, and keep this one free for the REStake autostaking script. That will mean I can remove a huge amount of dependencies and bring everything up to date. Will pick this up soon.

tombeynon commented 1 year ago

Resolved in #724