search

github-tools / github

A higher-level wrapper around the Github API. Intended for the browser.
BSD 3-Clause "New" or "Revised" License
3.59k stars 758 forks source link

update axios to v0.21+ #633

Closed ljharb closed 3 years ago

ljharb commented 3 years ago

There's a CVE for axios < v0.21: https://github.com/advisories/GHSA-4w2v-q235-vp99

similarly to #565, could a version be released that updates axios to latest?

NetaNir commented 3 years ago

Hi!

The AWS CDK also requires this upgrade. If this can be done in a minor version release - happy to submit a pull request.

j-rewerts commented 3 years ago

This fix is in v3.4.0.

ljharb commented 3 years ago

Thank you!