Update axios version to 0.25.0

logdna / logger-node

A nodejs logger client for LogDNA

MIT License

34 stars 17 forks source link

Closed bhupnaik closed 2 years ago

bhupnaik commented 2 years ago

We have identified a security vulnerability in the route that ends with @logdna/logger>axios>follow-redirects for follow-redirects version 1.14.6.
Same has been resolved in follow-redirects version 1.14.7 which is consumed by axios version 0.25.0
logdna/logger is currently using axios version 0.21.1 (https://github.com/logdna/logger-node/blob/main/package.json#L103)

Upgrading to axios version 0.25.0 will help us to resolve this vulnerability.

logdnabot commented 2 years ago

:tada: This issue has been resolved in version 2.6.1 :tada:

The release is available on:

Your semantic-release bot :package::rocket: