From 5e9bc5a96b863bff4c27c67560a36e20831d8efc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 10 Mar 2025 06:21:28 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-9292519 --- package-lock.json | 9 +++++---- package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 2fbba5a..3e15f93 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10,7 +10,7 @@ "dependencies": { "@types/next-auth": "^3.15.0", "all": "^0.0.0", - "axios": "^1.7.2", + "axios": "^1.8.2", "express": "^4.19.2", "jwt-decode": "^4.0.0", "keycloak-js": "^25.0.0", @@ -974,9 +974,10 @@ } }, "node_modules/axios": { - "version": "1.7.2", - "resolved": "https://registry.npmjs.org/axios/-/axios-1.7.2.tgz", - "integrity": "sha512-2A8QhOMrbomlDuiLeK9XibIBzuHeRcqqNOHp0Cyp5EoJ1IFDh+XZH3A6BkXtv0K4gFGCI0Y4BM7B1wOEi0Rmgw==", + "version": "1.8.2", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.8.2.tgz", + "integrity": "sha512-ls4GYBm5aig9vWx8AWDSGLpnpDQRtWAfrjU+EuytuODrFBkqesN2RkOQCBzrA1RQNHw1SmRMSDDDSwzNAYQ6Rg==", + "license": "MIT", "dependencies": { "follow-redirects": "^1.15.6", "form-data": "^4.0.0", diff --git a/package.json b/package.json index 5c5c423..2c9bd8a 100644 --- a/package.json +++ b/package.json @@ -11,7 +11,7 @@ "dependencies": { "@types/next-auth": "^3.15.0", "all": "^0.0.0", - "axios": "^1.7.2", + "axios": "^1.8.2", "express": "^4.19.2", "jwt-decode": "^4.0.0", "keycloak-js": "^25.0.0",