Dependabot alert on "follow-redirects" package

[robertbagge]

Description

Getting a security dependabot alert on the follow-redirects package, which is a dependency of axios. Issue has been resolved in version 1.15.4, which is included in axios version 1.16.5 - https://github.com/axios/axios/commit/75af1cdff5b3a6ca3766d3d3afbc3115bb0811b8z

Versions

You can find the version of your @twilio/plugin-flex by typing twilio plugins.

package	version
@twilio/plugin-flex	N/A
flex-plugin-scripts	6.2.3
node	v18.15.0
npm	9.5.0

Package.json

  "name": "test",
  "version": "0.8.0",
  "private": true,
  "dependencies": {
    "@twilio-paste/core": "^10.14.0",
    "@twilio-paste/icons": "^5.7.0",
    "@twilio/flex-plugin-scripts": "6.2.3",
    "prop-types": "^15.7.2",
    "react": "17.0.2",
    "react-dom": "17.0.2"
  },
  "devDependencies": {
    "@twilio/flex-ui": "2.4.1",
    "@types/express": "^4.17.20",
    "@types/handlebars": "^4.1.0",
    "express": "^4.18.2",
    "handlebars": "^4.7.8",
    "nodemon": "^3.0.1",
    "twilio-cli": "^5.5.0",
    "typescript": "^4"
  }
}

Steps to Reproduce

Please provide the steps to reproduce this bug:

1. npm install
2. check follow-redirects version in package-lock.json

Expected Behavior

version to be 1.15.4

Screenshots

Additional Context

Add any other context about the problem here.

[github-actions[bot]]

This issue is stale because it has been open for 30 days with no activity. Please remove stale label or comment or this issue will be closed in 30 days.

[github-actions[bot]]

This issue was closed because it has been stalled for 30 days with no activity. Please open a new issue if the issue is still relevant, linking to this one.

[github-actions[bot]]

This issue was closed because it has been stalled for 30 days with no activity. Please open a new issue if the issue is still relevant, linking to this one.