From 372d78912adda0b1e67a4cb3f70eb9544744dcbe Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 15 Aug 2024 01:10:55 +0000 Subject: [PATCH] fix: backend/package.json & backend/package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-7361793 --- backend/package-lock.json | 9 +++++---- backend/package.json | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/backend/package-lock.json b/backend/package-lock.json index fc20033..3b1009b 100644 --- a/backend/package-lock.json +++ b/backend/package-lock.json @@ -9,7 +9,7 @@ "version": "1.0.0", "license": "ISC", "dependencies": { - "axios": "^1.6.8", + "axios": "^1.7.4", "bcrypt": "^5.1.1", "bcryptjs": "^2.4.3", "cloudinary": "^2.0.3", @@ -443,9 +443,10 @@ "integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q==" }, "node_modules/axios": { - "version": "1.6.8", - "resolved": "https://registry.npmjs.org/axios/-/axios-1.6.8.tgz", - "integrity": "sha512-v/ZHtJDU39mDpyBoFVkETcd/uNdxrWRrg3bKpOKzXFA6Bvqopts6ALSMU3y6ijYxbw2B+wPrIv46egTzJXCLGQ==", + "version": "1.7.4", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.7.4.tgz", + "integrity": "sha512-DukmaFRnY6AzAALSH4J2M3k6PkaC+MfaAGdEERRWcC9q3/TWQwLpHR8ZRLKTdQ3aBDL64EdluRDjJqKw+BPZEw==", + "license": "MIT", "dependencies": { "follow-redirects": "^1.15.6", "form-data": "^4.0.0", diff --git a/backend/package.json b/backend/package.json index 9488c48..6ed2fa6 100644 --- a/backend/package.json +++ b/backend/package.json @@ -12,7 +12,7 @@ "author": "", "license": "ISC", "dependencies": { - "axios": "^1.6.8", + "axios": "^1.7.4", "bcrypt": "^5.1.1", "bcryptjs": "^2.4.3", "cloudinary": "^2.0.3",