[Snyk] Upgrade @nuxtjs/axios from 5.11.0 to 5.13.6

[rdower]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @nuxtjs/axios from 5.11.0 to 5.13.6.

 :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

- The recommended version is **13 versions** ahead of your current version. - The recommended version was released **a year ago**, on 2021-06-02. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-AXIOS-1579269](https://snyk.io/vuln/SNYK-JS-AXIOS-1579269) | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Proof of Concept | Information Exposure
[SNYK-JS-FOLLOWREDIRECTS-2332181](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2332181) | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Proof of Concept | Information Exposure
[SNYK-JS-FOLLOWREDIRECTS-2332181](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2332181) | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Proof of Concept | Server-Side Request Forgery (SSRF)
[SNYK-JS-AXIOS-1038255](https://snyk.io/vuln/SNYK-JS-AXIOS-1038255) | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | Proof of Concept | Information Exposure
[SNYK-JS-FOLLOWREDIRECTS-2396346](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2396346) | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | No Known Exploit | Information Exposure
[SNYK-JS-FOLLOWREDIRECTS-2396346](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-2396346) | **696/1000**
**Why?** Proof of Concept exploit, Has a fix available, CVSS 7.5 | No Known Exploit (*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @nuxtjs/axios

• 5.13.6 - 2021-06-02
  

  Bug Fixes

  • setHeader function returns after the first scope element (#507) (cb5e29d)
• 5.13.5 - 2021-05-26
  

  Bug Fixes

  • only transpile defu for client bundle (resolves #501) (ec2eb0a)
• 5.13.4 - 2021-05-18
  

  Bug Fixes

  • build.transpile guard for nuxt@1.x (fixes #498) (66d56ab)
• 5.13.3 - 2021-05-17
  

  Bug Fixes

  • transpile defu (cf1a03f), closes unjs/defu#28
• 5.13.2 - 2021-05-17
  

  Dependencies:

  • Update defu to 5.x

    </li>
    <li>
      <b>5.13.1</b> - <a href="https://snyk.io/redirect/github/nuxt-community/axios-module/releases/tag/v5.13.1">2021-02-08</a></br><h3>Bug Fixes</h3>

  • types: add missing type for create() (#475) (62f17ca)
  • types: update interceptors type (#476) (ecfab9a)

    </li>
    <li>
      <b>5.13.0</b> - <a href="https://snyk.io/redirect/github/nuxt-community/axios-module/releases/tag/v5.13.0">2021-02-01</a></br><h3>Features</h3>

  • Support baseUrl and browserBaseUrl to handle casing typos (8904847)

  Bug Fixes

  • Add x-forwarded-port and x-forwarded-proto to proxyHeaderIgnore defaults (#465) (a1a1894)

    </li>
    <li>
      <b>5.12.5</b> - <a href="https://snyk.io/redirect/github/nuxt-community/axios-module/releases/tag/v5.12.5">2021-01-04</a></br><h3>Bug Fixes</h3>

  • add x-forwarded-host to proxyHeaderIgnore defaults (#462) (433548b), closes #456

  Dependencies

  • Update axios to ^0.21.1 (axios/axios#3410) (#460)

    </li>
    <li>
      <b>5.12.4</b> - <a href="https://snyk.io/redirect/github/nuxt-community/axios-module/releases/tag/v5.12.4">2020-12-14</a></br><h3>Bug Fixes</h3>

  • Preserve default headers with custom headers (#452) (55f994f) (resolves resolves #411, #444)

  Dependencies

  • Update @ nuxtjs/proxy to 2.1.0 (less warnings and typescript rewrite)

  Thanks

  • Gábor Egyed (@ 1ed)

    </li>
    <li>
      <b>5.12.3</b> - <a href="https://snyk.io/redirect/github/nuxt-community/axios-module/releases/tag/v5.12.3">2020-11-30</a></br><h3>Bug Fixes</h3>

  • $loading().set(Infinity) issue (#424) (7b32262)

    </li>
    <li>
      <b>5.12.2</b> - 2020-08-25
    </li>
    <li>
      <b>5.12.1</b> - 2020-08-05
    </li>
    <li>
      <b>5.12.0</b> - 2020-07-10
    </li>
    <li>
      <b>5.11.0</b> - 2020-06-05
    </li>
  </ul>
  from <a href="https://snyk.io/redirect/github/nuxt-community/axios-module/releases">@nuxtjs/axios GitHub release notes</a>

Commit messages

Package name: @nuxtjs/axios

• 2796fa4 chore(release): 5.13.6
• d94b5d1 chore(deps): update all non-major dependencies (#478)
• cb5e29d fix: setHeader function returns after the first scope element (#507)
• bfaa9b2 docs(options): update grammar (#503)
• a9e4867 chore(release): 5.13.5
• ec2eb0a fix: only transpile defu for client bundle (resolves #501)
• 3759157 chore(release): 5.13.4
• 66d56ab fix: `build.transpile` guard for nuxt@1.x (fixes #498)
• 7e4a070 chore(release): 5.13.3
• cf1a03f fix: transpile defu
• be8f032 chore(release): 5.13.2
• 611e7a5 chore: update branch to main
• e0ac747 chore: update yarn.lock
• f0fd993 chore(deps): update dependency defu to v5 (#496)
• 22a27a4 docs: move to plausible analytics
• b92b6e9 chore(release): 5.13.1
• 32f0308 chore(deps): update all non-major dependencies (#471)
• ecfab9a fix(types): update interceptors type (#476)
• 62f17ca fix(types): add missing type for `create()` (#475)
• a61b82b chore(release): 5.13.0
• 8904847 feat: support baseUrl and browserBaseUrl to handle casing typos
• a1a1894 fix: add `x-forwarded-port` and `x-forwarded-proto` to `proxyHeaderIgnore` defaults (#465)
• c6e256c chore(release): 5.12.5
• b46a4b3 chore: update all deps

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs