Axios has a new "high" level vuln

openapistack / openapi-client-axios

JavaScript client library for consuming OpenAPI-enabled APIs with axios

https://openapistack.co

MIT License

558 stars 67 forks source link

Axios has a new "high" level vuln #51

Closed genehack closed 3 years ago

genehack commented 3 years ago

See https://www.npmjs.com/advisories/1594

genehack commented 3 years ago

Hi! I realize this isn't a super active project; I was just wondering if there was any chance of getting either the patch the dependbot sent in, or the one I sent it, applied any time soon to get a new release out that doesn't depend on a vulnerable version?

Thanks for thinking about it.

anttiviljami commented 3 years ago

Hi @genehack! Apologies for the delay. I've merged your PR and released openapi-client-axios@3.8.0

genehack commented 3 years ago

Thanks!