Skip to content

SK-2328 fix vulnerabilities related to sha.js and axios #251

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
skyflow-shravan merged 2 commits into from
Oct 7, 2025
Merged

SK-2328 fix vulnerabilities related to sha.js and axios #251

skyflow-shravan merged 2 commits into from
Oct 7, 2025

Conversation

@skyflow-shravan
Copy link
Contributor

@skyflow-shravan skyflow-shravan commented Oct 7, 2025

Why

  • To fix the vulnerabilities related to sha.js and axios

Goal

  • There should be 0 critical vulnerabilities

@amith-skyflow amith-skyflow requested a review from Copilot October 7, 2025 17:30
Copilot AI reviewed Oct 7, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR addresses security vulnerabilities by updating dependencies to patched versions, specifically focusing on axios and sha.js vulnerabilities as mentioned in the title.

  • Updated axios from a fixed version to a more recent version with security patches
  • Updated @babel/runtime to a newer version
  • Reordered typescript dependency in the devDependencies section
Files not reviewed (1)
  • samples/package-lock.json: Language not supported

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@amith-skyflow amith-skyflow self-requested a review October 7, 2025 17:31
@skyflow-shravan skyflow-shravan merged commit d77c0c2 into release/25.10.1 Oct 7, 2025
2 checks passed
skyflow-shravan added a commit that referenced this pull request Oct 8, 2025
@skyflow-shravan
SK-2328 public release after fixing vulnerabilities (#252)
51bb7ce 
* SK-2328 fix vulnerabilities related to sha.js and axios (#251)

* SK-2328 fix vulnerabilities related to sha.js and axios

* SK-2328 fix vulnerabilities related to sha.js and axios

* SK-2328 update common release yml

* [AUTOMATED] Private Release 2.0.0-dev.fc39350

* SK-2328 update common release yml

* [AUTOMATED] Private Release 2.0.0-dev.82d0f15

* SK-2328 update common release yml

---------

Co-authored-by: skyflow-shravan <skyflow-shravan@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@skyflow-vivek skyflow-vivek skyflow-vivek approved these changes

@saileshwar-skyflow saileshwar-skyflow saileshwar-skyflow approved these changes

@amith-skyflow amith-skyflow amith-skyflow approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@skyflow-shravan @skyflow-vivek @saileshwar-skyflow @amith-skyflow