INVALID Update dependency axios to v0.21.1 (main) - autoclosed

This PR contains the following updates:

Package	Type	Update	Change
axios (source)	dependencies	minor	`0.1.0` -> `0.21.1`

By merging this PR, the issue #5 will be automatically resolved and closed:

Severity	CVSS Score	CVE
High	7.5	CVE-2019-10742
High	7.5	CVE-2021-3749
Medium	5.9	CVE-2020-28168

Release Notes

axios/axios

### [`v0.21.1`](https://togithub.com/axios/axios/releases/tag/v0.21.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.21.0...v0.21.1) ##### Fixes and Functionality: - Hotfix: Prevent SSRF ([#3410](https://togithub.com/axios/axios/issues/3410)) - Protocol not parsed when setting proxy config from env vars ([#3070](https://togithub.com/axios/axios/issues/3070)) - Updating axios in types to be lower case ([#2797](https://togithub.com/axios/axios/issues/2797)) - Adding a type guard for `AxiosError` ([#2949](https://togithub.com/axios/axios/issues/2949)) ##### Internal and Tests: - Remove the skipping of the `socket` http test ([#3364](https://togithub.com/axios/axios/issues/3364)) - Use different socket for Win32 test ([#3375](https://togithub.com/axios/axios/issues/3375)) Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub: - Daniel Lopretto - Jason Kwok - Jay - Jonathan Foster - Remco Haszing - Xianming Zhong ### [`v0.21.0`](https://togithub.com/axios/axios/releases/tag/v0.21.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.20.0...v0.21.0) ##### Fixes and Functionality: - Fixing requestHeaders.Authorization ([#3287](https://togithub.com/axios/axios/pull/3287)) - Fixing node types ([#3237](https://togithub.com/axios/axios/pull/3237)) - Fixing axios.delete ignores config.data ([#3282](https://togithub.com/axios/axios/pull/3282)) - Revert "Fixing overwrite Blob/File type as Content-Type in browser. ([#1773](https://togithub.com/axios/axios/issues/1773))" ([#3289](https://togithub.com/axios/axios/pull/3289)) - Fixing an issue that type 'null' and 'undefined' is not assignable to validateStatus when typescript strict option is enabled ([#3200](https://togithub.com/axios/axios/pull/3200)) ##### Internal and Tests: - Lock travis to not use node v15 ([#3361](https://togithub.com/axios/axios/pull/3361)) ##### Documentation: - Fixing simple typo, existant -> existent ([#3252](https://togithub.com/axios/axios/pull/3252)) - Fixing typos ([#3309](https://togithub.com/axios/axios/pull/3309)) Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub: - Allan Cruz <57270969+Allanbcruz@users.noreply.github.com> - George Cheng - Jay - Kevin Kirsche - Remco Haszing - Taemin Shin - Tim Gates - Xianming Zhong ### [`v0.20.0`](https://togithub.com/axios/axios/releases/tag/v0.20.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.19.2...v0.20.0) Release of 0.20.0-pre as a full release with no other changes. ### [`v0.19.2`](https://togithub.com/axios/axios/releases/tag/v0.19.2) [Compare Source](https://togithub.com/axios/axios/compare/0.19.1...v0.19.2) - Remove unnecessary XSS check ([#2679](https://togithub.com/axios/axios/pull/2679)) (see ([#2646](https://togithub.com/axios/axios/issues/2646)) for discussion) ### [`v0.19.1`](https://togithub.com/axios/axios/releases/tag/0.19.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.19.0...0.19.1) ##### Fixes and Functionality: - Fixing invalid agent issue ([#1904](https://togithub.com/axios/axios/pull/1904)) - Fix ignore set withCredentials false ([#2582](https://togithub.com/axios/axios/pull/2582)) - Delete useless default to hash ([#2458](https://togithub.com/axios/axios/pull/2458)) - Fix HTTP/HTTPs agents passing to follow-redirect ([#1904](https://togithub.com/axios/axios/pull/1904)) - Fix ignore set withCredentials false ([#2582](https://togithub.com/axios/axios/pull/2582)) - Fix CI build failure ([#2570](https://togithub.com/axios/axios/pull/2570)) - Remove dependency on is-buffer from package.json ([#1816](https://togithub.com/axios/axios/pull/1816)) - Adding options typings ([#2341](https://togithub.com/axios/axios/pull/2341)) - Adding Typescript HTTP method definition for LINK and UNLINK. ([#2444](https://togithub.com/axios/axios/pull/2444)) - Update dist with newest changes, fixes Custom Attributes issue - Change syntax to see if build passes ([#2488](https://togithub.com/axios/axios/pull/2488)) - Update Webpack + deps, remove now unnecessary polyfills ([#2410](https://togithub.com/axios/axios/pull/2410)) - Fix to prevent XSS, throw an error when the URL contains a JS script ([#2464](https://togithub.com/axios/axios/pull/2464)) - Add custom timeout error copy in config ([#2275](https://togithub.com/axios/axios/pull/2275)) - Add error toJSON example ([#2466](https://togithub.com/axios/axios/pull/2466)) - Fixing Vulnerability A Fortify Scan finds a critical Cross-Site Scrip… ([#2451](https://togithub.com/axios/axios/pull/2451)) - Fixing subdomain handling on no_proxy ([#2442](https://togithub.com/axios/axios/pull/2442)) - Make redirection from HTTP to HTTPS work (\[[#2426](https://togithub.com/axios/axios/issues/2426)]\[https://github.com/axios/axios/pull/2426](https://togithub.com/axios/axios/pull/2426)6] and ([#2547](https://togithub.com/axios/axios/pull/2547)) - Add toJSON property to AxiosError type ([#2427](https://togithub.com/axios/axios/pull/2427)) - Fixing socket hang up error on node side for slow response. ([#1752](https://togithub.com/axios/axios/pull/1752)) - Alternative syntax to send data into the body ([#2317](https://togithub.com/axios/axios/pull/2317)) - Fixing custom config options ([#2207](https://togithub.com/axios/axios/pull/2207)) - Fixing set `config.method` after mergeConfig for Axios.prototype.request ([#2383](https://togithub.com/axios/axios/pull/2383)) - Axios create url bug ([#2290](https://togithub.com/axios/axios/pull/2290)) - Do not modify config.url when using a relative baseURL (resolves [#1628](https://togithub.com/axios/axios/issues/1098)) ([#2391](https://togithub.com/axios/axios/pull/2391)) - Add typescript HTTP method definition for LINK and UNLINK ([#2444](https://togithub.com/axios/axios/pull/2444)) ##### Internal: - Revert "Update Webpack + deps, remove now unnecessary polyfills" ([#2479](https://togithub.com/axios/axios/pull/2479)) - Order of if/else blocks is causing unit tests mocking XHR. ([#2201](https://togithub.com/axios/axios/pull/2201)) - Add license badge ([#2446](https://togithub.com/axios/axios/pull/2446)) - Fix travis CI build [#2386](https://togithub.com/axios/axios/pull/2386) - Fix cancellation error on build master. [#2290](https://togithub.com/axios/axios/issues/2290) [#2207](https://togithub.com/axios/axios/issues/2207) ([#2407](https://togithub.com/axios/axios/pull/2407)) ##### Documentation: - Fixing typo in CHANGELOG.md: s/Functionallity/Functionality ([#2639](https://togithub.com/axios/axios/pull/2639)) - Fix badge, use master branch ([#2538](https://togithub.com/axios/axios/pull/2538)) - Fix typo in changelog [#2193](https://togithub.com/axios/axios/pull/2193) - Document fix ([#2514](https://togithub.com/axios/axios/pull/2514)) - Update docs with no_proxy change, issue [#2484](https://togithub.com/axios/axios/issues/2484) ([#2513](https://togithub.com/axios/axios/pull/2513)) - Fixing missing words in docs template ([#2259](https://togithub.com/axios/axios/pull/2259)) - 🐛Fix request finally documentation in README ([#2189](https://togithub.com/axios/axios/pull/2189)) - updating spelling and adding link to docs ([#2212](https://togithub.com/axios/axios/pull/2212)) - docs: minor tweak ([#2404](https://togithub.com/axios/axios/pull/2404)) - Update response interceptor docs ([#2399](https://togithub.com/axios/axios/pull/2399)) - Update README.md ([#2504](https://togithub.com/axios/axios/pull/2504)) - Fix word 'sintaxe' to 'syntax' in README.md ([#2432](https://togithub.com/axios/axios/pull/2432)) - upadating README: notes on CommonJS autocomplete ([#2256](https://togithub.com/axios/axios/pull/2256)) - Fix grammar in README.md ([#2271](https://togithub.com/axios/axios/pull/2271)) - Doc fixes, minor examples cleanup ([#2198](https://togithub.com/axios/axios/pull/2198)) ### [`v0.19.0`](https://togithub.com/axios/axios/releases/tag/v0.19.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.18.1...v0.19.0) ##### Fixes and Functionality: - Unzip response body only for statuses != 204 ([#1129](https://togithub.com/axios/axios/issues/1129)) - drawski - Destroy stream on exceeding maxContentLength (fixes [#1098](https://togithub.com/axios/axios/issues/1098)) ([#1485](https://togithub.com/axios/axios/issues/1485)) - Gadzhi Gadzhiev - Makes Axios error generic to use AxiosResponse ([#1738](https://togithub.com/axios/axios/issues/1738)) - Suman Lama - Fixing Mocha tests by locking follow-redirects version to 1.5.10 ([#1993](https://togithub.com/axios/axios/issues/1993)) - grumblerchester - Allow uppercase methods in typings. ([#1781](https://togithub.com/axios/axios/issues/1781)) - Ken Powers - Fixing .eslintrc without extension ([#1789](https://togithub.com/axios/axios/issues/1789)) - Manoel - Consistent coding style ([#1787](https://togithub.com/axios/axios/issues/1787)) - Ali Servet Donmez - Fixing building url with hash mark ([#1771](https://togithub.com/axios/axios/issues/1771)) - Anatoly Ryabov - This commit fix building url with hash map (fragment identifier) when parameters are present: they must not be added after `#`, because client cut everything after `#` - Preserve HTTP method when following redirect ([#1758](https://togithub.com/axios/axios/issues/1758)) - Rikki Gibson - Add `getUri` signature to TypeScript definition. ([#1736](https://togithub.com/axios/axios/issues/1736)) - Alexander Trauzzi - Adding isAxiosError flag to errors thrown by axios ([#1419](https://togithub.com/axios/axios/issues/1419)) - Ayush Gupta - Fix failing SauceLabs tests by updating configuration - Emily Morehouse ##### Documentation: - Add information about auth parameter to README ([#2166](https://togithub.com/axios/axios/issues/2166)) - xlaguna - Add DELETE to list of methods that allow data as a config option ([#2169](https://togithub.com/axios/axios/issues/2169)) - Daniela Borges Matos de Carvalho - Update ECOSYSTEM.md - Add Axios Endpoints ([#2176](https://togithub.com/axios/axios/issues/2176)) - Renan - Add r2curl in ECOSYSTEM ([#2141](https://togithub.com/axios/axios/issues/2141)) - 유용우 / CX - Update README.md - Add instructions for installing with yarn ([#2036](https://togithub.com/axios/axios/issues/2036)) - Victor Hermes - Fixing spacing for README.md ([#2066](https://togithub.com/axios/axios/issues/2066)) - Josh McCarty - Update README.md. - Change `.then` to `.finally` in example code ([#2090](https://togithub.com/axios/axios/issues/2090)) - Omar Cai - Clarify what values responseType can have in Node ([#2121](https://togithub.com/axios/axios/issues/2121)) - Tyler Breisacher - docs(ECOSYSTEM): add axios-api-versioning ([#2020](https://togithub.com/axios/axios/issues/2020)) - Weffe - It seems that `responseType: 'blob'` doesn't actually work in Node (when I tried using it, response.data was a string, not a Blob, since Node doesn't have Blobs), so this clarifies that this option should only be used in the browser - Add issue templates - Emily Morehouse - Update README.md. - Add Querystring library note ([#1896](https://togithub.com/axios/axios/issues/1896)) - Dmitriy Eroshenko - Add react-hooks-axios to Libraries section of ECOSYSTEM.md ([#1925](https://togithub.com/axios/axios/issues/1925)) - Cody Chan - Clarify in README that default timeout is 0 (no timeout) ([#1750](https://togithub.com/axios/axios/issues/1750)) - Ben Standefer ### [`v0.18.1`](https://togithub.com/axios/axios/releases/tag/v0.18.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.18.0...v0.18.1) ##### Security Fix: - Destroy stream on exceeding maxContentLength (fixes [#1098](https://togithub.com/axios/axios/issues/1098)) ([#1485](https://togithub.com/axios/axios/issues/1485)) - Gadzhi Gadzhiev ### [`v0.18.0`](https://togithub.com/axios/axios/releases/tag/v0.18.0): v.0.18.0 [Compare Source](https://togithub.com/axios/axios/compare/v0.17.1...v0.18.0) - Adding support for UNIX Sockets when running with Node.js ([#1070](https://togithub.com/axios/axios/pull/1070)) - Fixing typings ([#1177](https://togithub.com/axios/axios/pull/1177)): - AxiosRequestConfig.proxy: allows type false - AxiosProxyConfig: added auth field - Adding function signature in AxiosInstance interface so AxiosInstance can be invoked ([#1192](https://togithub.com/axios/axios/pull/1192), [#1254](https://togithub.com/axios/axios/pull/1254)) - Allowing maxContentLength to pass through to redirected calls as maxBodyLength in follow-redirects config ([#1287](https://togithub.com/axios/axios/pull/1287)) - Fixing configuration when using an instance - method can now be set ([#1342](https://togithub.com/axios/axios/pull/1342)) ##### 0.17.1 (Nov 11, 2017) - Fixing issue with web workers ([#1160](https://togithub.com/axios/axios/pull/1160)) - Allowing overriding transport ([#1080](https://togithub.com/axios/axios/pull/1080)) - Updating TypeScript typings ([#1165](https://togithub.com/axios/axios/pull/1165), [#1125](https://togithub.com/axios/axios/pull/1125), [#1131](https://togithub.com/axios/axios/pull/1131)) ### [`v0.17.1`](https://togithub.com/axios/axios/compare/v0.17.0...v0.17.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.17.0...v0.17.1) ### [`v0.17.0`](https://togithub.com/axios/axios/compare/v0.16.2...v0.17.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.16.2...v0.17.0) ### [`v0.16.2`](https://togithub.com/axios/axios/compare/v0.16.1...v0.16.2) [Compare Source](https://togithub.com/axios/axios/compare/v0.16.1...v0.16.2) ### [`v0.16.1`](https://togithub.com/axios/axios/compare/v0.16.0...v0.16.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.16.0...v0.16.1) ### [`v0.16.0`](https://togithub.com/axios/axios/compare/v0.15.3...v0.16.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.15.3...v0.16.0) ### [`v0.15.3`](https://togithub.com/axios/axios/compare/v0.15.2...v0.15.3) [Compare Source](https://togithub.com/axios/axios/compare/v0.15.2...v0.15.3) ### [`v0.15.2`](https://togithub.com/axios/axios/compare/v0.15.1...v0.15.2) [Compare Source](https://togithub.com/axios/axios/compare/v0.15.1...v0.15.2) ### [`v0.15.1`](https://togithub.com/axios/axios/compare/v0.15.0...v0.15.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.15.0...v0.15.1) ### [`v0.15.0`](https://togithub.com/axios/axios/compare/v0.14.0...v0.15.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.14.0...v0.15.0) ### [`v0.14.0`](https://togithub.com/axios/axios/compare/v0.13.1...v0.14.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.13.1...v0.14.0) ### [`v0.13.1`](https://togithub.com/axios/axios/compare/v0.13.0...v0.13.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.13.0...v0.13.1) ### [`v0.13.0`](https://togithub.com/axios/axios/compare/v0.12.0...v0.13.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.12.0...v0.13.0) ### [`v0.12.0`](https://togithub.com/axios/axios/compare/v0.11.1...v0.12.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.11.1...v0.12.0) ### [`v0.11.1`](https://togithub.com/axios/axios/compare/v0.11.0...v0.11.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.11.0...v0.11.1) ### [`v0.11.0`](https://togithub.com/axios/axios/compare/v0.10.0...v0.11.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.10.0...v0.11.0) ### [`v0.10.0`](https://togithub.com/axios/axios/compare/v0.9.1...v0.10.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.9.1...v0.10.0) ### [`v0.9.1`](https://togithub.com/axios/axios/compare/v0.9.0...v0.9.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.9.0...v0.9.1) ### [`v0.9.0`](https://togithub.com/axios/axios/compare/v0.8.1...v0.9.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.8.1...v0.9.0) ### [`v0.8.1`](https://togithub.com/axios/axios/compare/v0.8.0...v0.8.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.8.0...v0.8.1) ### [`v0.8.0`](https://togithub.com/axios/axios/compare/v0.7.0...v0.8.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.7.0...v0.8.0) ### [`v0.7.0`](https://togithub.com/axios/axios/compare/v0.6.0...v0.7.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.6.0...v0.7.0) ### [`v0.6.0`](https://togithub.com/axios/axios/compare/v0.5.4...v0.6.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.5.4...v0.6.0) ### [`v0.5.4`](https://togithub.com/axios/axios/compare/v0.5.3...v0.5.4) [Compare Source](https://togithub.com/axios/axios/compare/v0.5.3...v0.5.4) ### [`v0.5.3`](https://togithub.com/axios/axios/compare/v0.5.2...v0.5.3) [Compare Source](https://togithub.com/axios/axios/compare/v0.5.2...v0.5.3) ### [`v0.5.2`](https://togithub.com/axios/axios/compare/v0.5.1...v0.5.2) [Compare Source](https://togithub.com/axios/axios/compare/v0.5.1...v0.5.2) ### [`v0.5.1`](https://togithub.com/axios/axios/compare/v0.5.0...v0.5.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.5.0...v0.5.1) ### [`v0.5.0`](https://togithub.com/axios/axios/compare/v0.4.2...v0.5.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.4.2...v0.5.0) ### [`v0.4.2`](https://togithub.com/axios/axios/compare/v0.4.1...v0.4.2) [Compare Source](https://togithub.com/axios/axios/compare/v0.4.1...v0.4.2) ### [`v0.4.1`](https://togithub.com/axios/axios/compare/v0.4.0...v0.4.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.4.0...v0.4.1) ### [`v0.4.0`](https://togithub.com/axios/axios/compare/v0.3.1...v0.4.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.3.1...v0.4.0) ### [`v0.3.1`](https://togithub.com/axios/axios/compare/v0.3.0...v0.3.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.3.0...v0.3.1) ### [`v0.3.0`](https://togithub.com/axios/axios/compare/v0.2.2...v0.3.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.2.2...v0.3.0) ### [`v0.2.2`](https://togithub.com/axios/axios/compare/v0.2.1...v0.2.2) [Compare Source](https://togithub.com/axios/axios/compare/v0.2.1...v0.2.2) ### [`v0.2.1`](https://togithub.com/axios/axios/compare/v0.2.0...v0.2.1) [Compare Source](https://togithub.com/axios/axios/compare/v0.2.0...v0.2.1) ### [`v0.2.0`](https://togithub.com/axios/axios/compare/v0.1.0...v0.2.0) [Compare Source](https://togithub.com/axios/axios/compare/v0.1.0...v0.2.0)

[ ] If you want to rebase/retry this PR, check this box

svg-GHC-2 / frank

INVALID Update dependency axios to v0.21.1 (main) - autoclosed #34

Release Notes