Skip to content
This repository has been archived by the owner on Feb 13, 2024. It is now read-only.

Upgrade axios to >=0.19.0 to fix vulnerability #209

Closed
letsgolesco opened this issue Jun 3, 2019 · 4 comments
Closed

Upgrade axios to >=0.19.0 to fix vulnerability #209

letsgolesco opened this issue Jun 3, 2019 · 4 comments

Comments

@letsgolesco
Copy link

letsgolesco commented Jun 3, 2019
edited

See NPM advisory: https://www.npmjs.com/advisories/880

Their changelog doesn't flag any breaking changes since 0.17.1 so this should be a safe upgrade
@letsgolesco letsgolesco mentioned this issue Jun 3, 2019
Closed
@shawn-rival
Copy link

I made a PR for this 5 days ago but not sure who to reach out to to get this merged: #208

@f2prateek
Copy link
Contributor

Closed by #211

@nicogon
Copy link

nicogon commented Jun 28, 2019

all 0.18.x versions are vulnerable, fixed on 0.19
axios/axios#1098, please merge
#218

@shawn-rival
Copy link

The fix was backported to 0.18.1: https://github.com/axios/axios/releases/tag/v0.18.1

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

chore(package): upgrade axios to version 0.19.0 letsgolesco/analytics-node
4 participants
@f2prateek @letsgolesco @nicogon @shawn-rival