[Security] Bump axios from 0.17.0 to 0.18.1

[dependabot-preview]

Bumps axios from 0.17.0 to 0.18.1. This update includes a security fix.

Vulnerabilities fixed

Sourced from The GitHub Security Advisory Database.

High severity vulnerability that affects axios Axios up to and including 0.18.0 allows attackers to cause a denial of service (application crash) by continuing to accepting content after maxContentLength is exceeded.

Affected versions: <= 0.18.0

Release notes

Sourced from axios's releases.

v0.18.1

Security Fix:

• Destroy stream on exceeding maxContentLength (fixes #1098) (#1485) - Gadzhi Gadzhiev

v.0.18.0

• Adding support for UNIX Sockets when running with Node.js (#1070)
• Fixing typings (#1177):
  • AxiosRequestConfig.proxy: allows type false
  • AxiosProxyConfig: added auth field
• Adding function signature in AxiosInstance interface so AxiosInstance can be invoked (#1192, #1254)
• Allowing maxContentLength to pass through to redirected calls as maxBodyLength in follow-redirects config (#1287)
• Fixing configuration when using an instance - method can now be set (#1342)

0.17.1 (Nov 11, 2017)

• Fixing issue with web workers (#1160)
• Allowing overriding transport (#1080)
• Updating TypeScript typings (#1165, #1125, #1131)

v0.17.1

No release notes provided.

Changelog

Sourced from axios's changelog.

0.18.1 (May 31, 2019)

Security Fix:

• Destroy stream on exceeding maxContentLength (fixes #1098) (#1485) - Gadzhi Gadzhiev

0.18.0 (Feb 19, 2018)

• Adding support for UNIX Sockets when running with Node.js (#1070)
• Fixing typings (#1177):
  • AxiosRequestConfig.proxy: allows type false
  • AxiosProxyConfig: added auth field
• Adding function signature in AxiosInstance interface so AxiosInstance can be invoked (#1192, #1254)
• Allowing maxContentLength to pass through to redirected calls as maxBodyLength in follow-redirects config (#1287)
• Fixing configuration when using an instance - method can now be set (#1342)

0.17.1 (Nov 11, 2017)

• Fixing issue with web workers (#1160)
• Allowing overriding transport (#1080)
• Updating TypeScript typings (#1165, #1125, #1131)

Commits

• face016 Releasing 0.18.1
• 0628763 Update Changelog for release (0.18.1)
• dc9b29c adjust README to match IE support
• 16326d5 Remove usages of isOldIE in tests
• 5a4228b Remove IE10 launcher from karma config
• 695b5f7 Remove isOldIE check in tests
• e314ab0 Remove HTTP 1223 handling
• 7efa822 Remove btoa polyfill tests
• f3cdcc7 Delete btoa polyfill
• efc0b58 Remove ie8/9 special CORS treatment and btoa polyfill
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by emilyemorehouse, a new releaser for axios since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)