sonarcloud[bot]
commented
8 months ago 
Quality Gate passed
Issues
0 New issues
Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code
Open jollyjerinjoy opened 8 months ago
sonarcloud[bot]
commented
8 months ago Quality Gate passedIssues
0 New issues
Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade axios from 1.6.2 to 1.6.5.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **3 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2024-01-05. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:-------------------------
[SNYK-JS-AXIOS-6144788](https://snyk.io/vuln/SNYK-JS-AXIOS-6144788) | **589/1000**
**Why?** Has a fix available, CVSS 7.5 | No Known Exploit
[SNYK-JS-FOLLOWREDIRECTS-6141137](https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6141137) | **589/1000**
**Why?** Has a fix available, CVSS 7.5 | Proof of Concept
[SNYK-JS-AXIOS-6124857](https://snyk.io/vuln/SNYK-JS-AXIOS-6124857) | **589/1000**
**Why?** Has a fix available, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: axios
-
1.6.5 - 2024-01-05
- ci: refactor notify action as a job of publish action; (#6176) (0736f95)
- dns: fixed lookup error handling; (#6175) (f4f2b03)
Dmitriy Mozgovoy
Jay
-
1.6.4 - 2024-01-03
- security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)
- security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)
Jay
Dmitriy Mozgovoy
Guy Nesher
-
1.6.3 - 2023-12-26
- Regular Expression Denial of Service (ReDoS) (#6132) (5e7ad38)
Jay
Willian Agostini
Dmitriy Mozgovoy
-
1.6.2 - 2023-11-14
- withXSRFToken: added withXSRFToken option as a workaround to achieve the old
- feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ( #6046 )
Dmitriy Mozgovoy
Ng Choon Khon (CK)
Muhammad Noman
from axios GitHub release notesRelease notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Bug Fixes
Contributors to this release
Release notes:
Features
withCredentialsbehavior; (#6046) (cff9967)PRs
Contributors to this release
Commit messages
Package name: axios
- 6d4c421 chore(release): v1.6.5 (#6177)
- 0736f95 fix(ci): refactor notify action as a job of publish action; (#6176)
- f4f2b03 fix(dns): fixed lookup error handling; (#6175)
- 1f73dcb docs: update sponsor links
- 8790b8e chore(release): v1.6.4 (#6173)
- 0ad520d chore(ci): fix notify action; (#6172)
- 3c0c11c fix(security): fixed formToJSON prototype pollution vulnerability; (#6167)
- 75af1cd fix(security): fixed security vulnerability in follow-redirects (#6163)
- 90864b3 docs: update logos
- 1542719 docs: updated headline sponsors
- b15b918 chore(release): v1.6.3 (#6151)
- b76cce0 chore(ci): added branches filter for notify action; (#6084)
- 5e7ad38 fix: Regular Expression Denial of Service (ReDoS) (#6132)
- 8befb86 docs: update alloy link (#6145)
- d18f40d docs: add headline sponsors
Compare**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: