From 555be8954a118c3464362f0409c66cc036a01b23 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 13 Feb 2026 20:18:38 +0000 Subject: [PATCH] fix: src/server/package.json & src/server/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-15252993 --- src/server/package-lock.json | 13 +++++++------ src/server/package.json | 2 +- 2 files changed, 8 insertions(+), 7 deletions(-) diff --git a/src/server/package-lock.json b/src/server/package-lock.json index c5ceca8..a9381f2 100644 --- a/src/server/package-lock.json +++ b/src/server/package-lock.json @@ -1564,12 +1564,12 @@ } }, "axios": { - "version": "1.13.2", - "resolved": "https://registry.npmjs.org/axios/-/axios-1.13.2.tgz", - "integrity": "sha512-VPk9ebNqPcy5lRGuSlKx752IlDatOjT9paPlm8A7yOuW2Fbvp4X3JznJtT4f0GzGLLiWE9W8onz51SqLYwzGaA==", + "version": "1.13.5", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.13.5.tgz", + "integrity": "sha512-cz4ur7Vb0xS4/KUN0tPWe44eqxrIu31me+fbang3ijiNscE129POzipJJA6zniq2C/Z6sJCjMimjS8Lc/GAs8Q==", "requires": { - "follow-redirects": "^1.15.6", - "form-data": "^4.0.4", + "follow-redirects": "^1.15.11", + "form-data": "^4.0.5", "proxy-from-env": "^1.1.0" } }, @@ -1798,7 +1798,8 @@ "commander": { "version": "2.20.3", "resolved": "https://registry.npmjs.org/commander/-/commander-2.20.3.tgz", - "integrity": "sha512-GpVkmM8vF2vQUkj2LvZmD35JxeJOLCwJ9cUkugyk2nuhbv3+mJvpLYYt+0+USMxE+oj+ey/lJEnhZw75x/OMcQ==" + "integrity": "sha512-GpVkmM8vF2vQUkj2LvZmD35JxeJOLCwJ9cUkugyk2nuhbv3+mJvpLYYt+0+USMxE+oj+ey/lJEnhZw75x/OMcQ==", + "devOptional": true }, "concat-map": { "version": "0.0.1", diff --git a/src/server/package.json b/src/server/package.json index d92532f..122c403 100644 --- a/src/server/package.json +++ b/src/server/package.json @@ -6,7 +6,7 @@ "dependencies": { "@jsbits/get-package-version": "^1.0.3", "abstract-things": "^0.9.0", - "axios": "^1.13.2", + "axios": "^1.13.5", "body-parser": "^1.20.4", "construe": "^0.4.1", "cors": "^2.8.5",