This repository was archived by the owner on Sep 27, 2022. It is now read-only.
[Snyk] Upgrade axios from 0.24.0 to 0.25.0 #143
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade axios from 0.24.0 to 0.25.0. See this package in npm: https://www.npmjs.com/package/axios See this project in Snyk: https://app.snyk.io/org/podarok/project/6044d276-123a-47f6-bc56-2337e11f649d?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade axios from 0.24.0 to 0.25.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-FOLLOWREDIRECTS-2332181
Why? Proof of Concept exploit, CVSS 5.3
SNYK-JS-FOLLOWREDIRECTS-2396346
Why? Proof of Concept exploit, CVSS 5.3
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: axios
-
0.25.0 - 2022-01-18
- Fixing maxBodyLength enforcement (#3786)
- Don't rely on strict mode behaviour for arguments (#3470)
- Adding error handling when missing url (#3791)
- Update isAbsoluteURL.js removing escaping of non-special characters (#3809)
- Use native Array.isArray() in utils.js (#3836)
- Adding error handling inside stream end callback (#3967)
- Added aborted even handler (#3916)
- Header types expanded allowing
- Fix cancel signature allowing cancel message to be
- Updated type checks to be formulated better (#3342)
- Avoid unnecessary buffer allocations (#3321)
- Adding a socket handler to keep TCP connection live when processing long living requests (#3422)
- Added toFormData helper function (#3757)
- Adding responseEncoding prop type in AxiosRequestConfig (#3918)
- Adding axios-test-instance to ecosystem (#3786)
- Optimize the logic of isAxiosError (#3546)
- Add tests and documentation to display how multiple inceptors work (#3564)
- Updating follow-redirects to version 1.14.7 (#4379)
- Fixing changelog to show corrext pull request (#4219)
- Update upgrade guide for https proxy setting (#3604)
- Jay
- Rijk van Zanten
- Kohta Ito
- Brandon Faulkner
- Stefano Magni
- enofan
- Andrey Pechkurov
- Doowonee
- Emil Broman
- Remco Haszing
- Black-Hole
- Wolfram Kriesing
- Andrew Ovens
- Paulo Renato
- Ben Carp
- Hirotaka Tagawa
- 狼族小狈
- C. Lewis
- Felipe Carvalho
- Daniel
- Gustavo Sales
-
0.24.0 - 2021-10-25
- Revert: change type of AxiosResponse to any, please read lengthy discussion here: (#4141) pull request: (#4186)
- Jay
- Rodry
- Remco Haszing
- Isaiah Thomason
from axios GitHub release notes0.25.0 (January 18, 2022)
Breaking changes:
Fixes and Functionality:
booleanandnumbertypes (#4144)undefined(#3153)Internal and Tests:
Documentation:
Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:
0.24.0 (October 25, 2021)
Breaking changes:
Huge thanks to everyone who contributed to this release via code (authors listed below) or via reviews and triaging on GitHub:
Commit messages
Package name: axios
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs