[Feature Request]: fix audit

[ralyodio]

Preflight Checklist

• [X] I have read the Contributing Guidelines for this project.
• [X] I agree to follow the Code of Conduct that this project adheres to.
• [X] I have searched the issue tracker for a feature request that matches the one I want to file, without success.
• [X] This is not a general Twilio feature request or bug report. It is a feature request for the twilio-node JavaScript package.

Problem Description

$ npm audit fix

up to date, audited 371 packages in 536ms

57 packages are looking for funding run npm fund for details

npm audit report

axios 0.8.1 - 1.5.1 Severity: moderate Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx fix available via npm audit fix --force Will install twilio@3.40.0, which is a breaking change node_modules/axios twilio 3.41.0 - 4.1.1 || 4.7.0 - 4.19.0 Depends on vulnerable versions of axios node_modules/twilio

2 moderate severity vulnerabilities

To address all issues (including breaking changes), run: npm audit fix --force

Proposed Solution

$ npm audit fix

up to date, audited 371 packages in 536ms

57 packages are looking for funding run npm fund for details

npm audit report

axios 0.8.1 - 1.5.1 Severity: moderate Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx fix available via npm audit fix --force Will install twilio@3.40.0, which is a breaking change node_modules/axios twilio 3.41.0 - 4.1.1 || 4.7.0 - 4.19.0 Depends on vulnerable versions of axios node_modules/twilio

2 moderate severity vulnerabilities

To address all issues (including breaking changes), run: npm audit fix --force

Alternatives Considered

$ npm audit fix

up to date, audited 371 packages in 536ms

57 packages are looking for funding run npm fund for details

npm audit report

axios 0.8.1 - 1.5.1 Severity: moderate Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx fix available via npm audit fix --force Will install twilio@3.40.0, which is a breaking change node_modules/axios twilio 3.41.0 - 4.1.1 || 4.7.0 - 4.19.0 Depends on vulnerable versions of axios node_modules/twilio

2 moderate severity vulnerabilities

To address all issues (including breaking changes), run: npm audit fix --force

Additional Information

$ npm audit fix

up to date, audited 371 packages in 536ms

57 packages are looking for funding run npm fund for details

npm audit report

axios 0.8.1 - 1.5.1 Severity: moderate Axios Cross-Site Request Forgery Vulnerability - https://github.com/advisories/GHSA-wf5p-g6vw-rhxx fix available via npm audit fix --force Will install twilio@3.40.0, which is a breaking change node_modules/axios twilio 3.41.0 - 4.1.1 || 4.7.0 - 4.19.0 Depends on vulnerable versions of axios node_modules/twilio

2 moderate severity vulnerabilities

To address all issues (including breaking changes), run: npm audit fix --force

[tiwarishubham635]

I think this issue is fixed now. You can run npm audit fixto get the audit report with "found 0 vulnerabilities". Thanks!

[ralyodio]

i posted this back in november ffs.