samples-server
samples-server copied to clipboard
temporalio
chore(deps): update dependency axios to ^1.6.3 (main)
This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| axios (source) | dependencies | minor | ^1.4.0 -> ^1.6.3 |
By merging this PR, the below vulnerabilities will be automatically resolved:
| Severity |  CVSS Score |
CVE |
|---|---|---|
 Medium |
6.1 | CVE-2023-26159 |
Release Notes
axios/axios (axios)
v1.6.3
Bug Fixes
Contributors to this release
v1.6.2
Features
-
withXSRFToken: added withXSRFToken option as a workaround to achieve the old
withCredentialsbehavior; (#β6046) (cff9967)
PRs
- feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ( #β6046 )
π’ This PR added 'withXSRFToken' option as a replacement for old withCredentials behaviour.
You should now use withXSRFToken along with withCredential to get the old behavior.
This functionality is considered as a fix.
Contributors to this release
v1.6.1
Bug Fixes
- formdata: fixed content-type header normalization for non-standard browser environments; (#β6056) (dd465ab)
- platform: fixed emulated browser detection in node.js environment; (#β6055) (3dc8369)
Contributors to this release
PRs
- feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ( #β6046 )
π’ This PR added 'withXSRFToken' option as a replacement for old withCredentials behaviour.
You should now use withXSRFToken along with withCredential to get the old behavior.
This functionality is considered as a fix.
v1.6.0
Bug Fixes
- CSRF: fixed CSRF vulnerability CVE-2023-45857 (#β6028) (96ee232)
- dns: fixed lookup function decorator to work properly in node v20; (#β6011) (5aaff53)
- types: fix AxiosHeaders types; (#β5931) (a1c8ad0)
PRs
- CVE 2023 45857 ( #β6028 )
β οΈ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
Contributors to this release
1.5.1 (2023-09-26)
Bug Fixes
- adapters: improved adapters loading logic to have clear error messages; (#β5919) (e410779)
-
formdata: fixed automatic addition of the
Content-Typeheader for FormData in non-browser environments; (#β5917) (bc9af51) -
headers: allow
content-encodingheader to handle case-insensitive values (#β5890) (#β5892) (4c89f25) - types: removed duplicated code (9e62056)
Contributors to this release
PRs
- CVE 2023 45857 ( #β6028 )
β οΈ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
v1.5.1
Bug Fixes
- adapters: improved adapters loading logic to have clear error messages; (#β5919) (e410779)
-
formdata: fixed automatic addition of the
Content-Typeheader for FormData in non-browser environments; (#β5917) (bc9af51) -
headers: allow
content-encodingheader to handle case-insensitive values (#β5890) (#β5892) (4c89f25) - types: removed duplicated code (9e62056)
Contributors to this release
PRs
- CVE 2023 45857 ( #β6028 )
β οΈ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
v1.5.0
Bug Fixes
- adapter: make adapter loading error more clear by using platform-specific adapters explicitly (#β5837) (9a414bb)
-
dns: fixed
cacheable-lookupintegration; (#β5836) (b3e327d) - headers: added support for setting header names that overlap with class methods; (#β5831) (d8b4ca0)
- headers: fixed common Content-Type header merging; (#β5832) (8fda276)
Features
- export getAdapter function (#β5324) (ca73eb8)
-
export: export adapters without
unsafeprefix (#β5839) (1601f4a)
Contributors to this release
PRs
- CVE 2023 45857 ( #β6028 )
β οΈ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
- [ ] If you want to rebase/retry this PR, check this box
![mend-for-github-com[bot] avatar](https://avatars.githubusercontent.com/in/30796?v=4 "Published by a pub.dev verified publisher"){kind=small}