Uprade axios to 1.6.4 to fix CVE

mailjet / mailjet-apiv3-nodejs

[API v3] Official Mailjet API v3 NodeJS wrapper

https://dev.mailjet.com

MIT License

232 stars 67 forks source link

Uprade axios to 1.6.4 to fix CVE #275

Open cteyton opened 3 months ago

cteyton commented 3 months ago

Hello guys,

Snyk told me that the latest version has an issue with the axios dependency

Issues with no direct upgrade or patch:
  ✗ Prototype Pollution [High Severity][https://security.snyk.io/vuln/SNYK-JS-AXIOS-6144788] in axios@1.6.2
    introduced by node-mailjet@6.0.5 > axios@1.6.2
  This issue was fixed in versions: 1.6.4

Hope that helps :-)