Skip to content

Commit 204d08d

Browse files
snyk-botsnyk-bot
committed
fix: package.json & yarn.lock to reduce vulnerabilities
The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-7361793 - https://snyk.io/vuln/SNYK-JS-FOLLOWREDIRECTS-6444610 - https://snyk.io/vuln/SNYK-JS-AXIOS-6671926
1 parent b118e88 commit 204d08d

File tree

2 files changed

+10
-10
lines changed

2 files changed

+10
-10
lines changed

package.json

+1-1
Original file line numberDiff line numberDiff line change
@@ -248,7 +248,7 @@
248248
"@stablelib/snappy": "^1.0.3",
249249
"@vscode/l10n": "^0.0.18",
250250
"@vscode/webview-ui-toolkit": "^1.4.0",
251-
"axios": "^1.5.1",
251+
"axios": "^1.7.8",
252252
"brotli-unicode": "^1.0.2",
253253
"buffer": "^6.0.3",
254254
"classnames": "^2.3.2",

yarn.lock

+9-9
Original file line numberDiff line numberDiff line change
@@ -2538,12 +2538,12 @@ available-typed-arrays@^1.0.7:
25382538
dependencies:
25392539
possible-typed-array-names "^1.0.0"
25402540

2541-
axios@^1.5.1:
2542-
version "1.6.6"
2543-
resolved "https://registry.yarnpkg.com/axios/-/axios-1.6.6.tgz#878db45401d91fe9e53aed8ac962ed93bde8dd1c"
2544-
integrity sha512-XZLZDFfXKM9U/Y/B4nNynfCRUqNyVZ4sBC/n9GDRCkq9vd2mIvKjKKsbIh1WPmHmNbg6ND7cTBY3Y2+u1G3/2Q==
2541+
axios@^1.7.8:
2542+
version "1.7.9"
2543+
resolved "https://registry.yarnpkg.com/axios/-/axios-1.7.9.tgz#d7d071380c132a24accda1b2cfc1535b79ec650a"
2544+
integrity sha512-LhLcE7Hbiryz8oMDdDptSrWowmB4Bl6RCt6sIJKpRB4XtVf0iEgewX3au/pJqm+Py1kCASkb/FFKjxQaLtxJvw==
25452545
dependencies:
2546-
follow-redirects "^1.15.4"
2546+
follow-redirects "^1.15.6"
25472547
form-data "^4.0.0"
25482548
proxy-from-env "^1.1.0"
25492549

@@ -4360,10 +4360,10 @@ flatted@^3.2.9:
43604360
resolved "https://registry.yarnpkg.com/flatted/-/flatted-3.2.9.tgz#7eb4c67ca1ba34232ca9d2d93e9886e611ad7daf"
43614361
integrity sha512-36yxDn5H7OFZQla0/jFJmbIKTdZAQHngCedGxiMmpNfEZM0sdEeT+WczLQrjK6D7o2aiyLYDnkw0R3JK0Qv1RQ==
43624362

4363-
follow-redirects@^1.15.4:
4364-
version "1.15.5"
4365-
resolved "https://registry.yarnpkg.com/follow-redirects/-/follow-redirects-1.15.5.tgz#54d4d6d062c0fa7d9d17feb008461550e3ba8020"
4366-
integrity sha512-vSFWUON1B+yAw1VN4xMfxgn5fTUiaOzAJCKBwIIgT/+7CuGy9+r+5gITvP62j3RmaD5Ph65UaERdOSRGUzZtgw==
4363+
follow-redirects@^1.15.6:
4364+
version "1.15.9"
4365+
resolved "https://registry.yarnpkg.com/follow-redirects/-/follow-redirects-1.15.9.tgz#a604fa10e443bf98ca94228d9eebcc2e8a2c8ee1"
4366+
integrity sha512-gew4GsXizNgdoRyqmyfMHyAmXsZDk6mHkSxZFCzW9gwlbtOW44CDtYavM+y+72qD/Vq2l550kMF52DT8fOLJqQ==
43674367

43684368
for-each@^0.3.3:
43694369
version "0.3.3"

0 commit comments

Comments
 (0)