chore: upgrade axios version to latest to resolve vulnerabilities

2024-09-30 19:54:51 +08:00 · 2024-09-30 19:54:51 +08:00 · 0f34effa52
commit 0f34effa52
parent 9066792d74
3 changed files with 21 additions and 10 deletions
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@ -230,8 +230,8 @@ importers:
        specifier: ^3.0.1
        version: 3.0.1
      axios:
-        specifier: ^1.5.0
-        version: 1.5.0
+        specifier: 1.7.7
+        version: 1.7.7
      bytemd:
        specifier: ^1.21.0
        version: 1.21.0
@ -450,8 +450,8 @@ importers:
        specifier: ^1.5.0
        version: 1.5.0
      axios:
-        specifier: ^1.5.0
-        version: 1.5.0
+        specifier: 1.7.7
+        version: 1.7.7
      badge-maker:
        specifier: ^3.3.1
        version: 3.3.1
@ -4914,8 +4914,8 @@ packages:
    resolution: {integrity: sha512-Mr2ZakwQ7XUAjp7pAwQWRhhK8mQQ6JAaNWSjmjxil0R8BPioMtQsTLOolGYkji1rcL++3dCqZA3zWqpT+9Ew6g==}
    engines: {node: '>=4'}

-  axios@1.5.0:
-    resolution: {integrity: sha512-D4DdjDo5CY50Qms0qGQTTw6Q44jl7zRwY7bthds06pUGfChBCTcQs+N743eFWGEd6pRTMd6A+I87aWyFV5wiZQ==}
+  axios@1.7.7:
+    resolution: {integrity: sha512-S4kL7XrjgBmvdGut0sN3yJxqYzrDOnivkBiN0OFs6hLiUam3UPvswUo0kqGyhqUZGEOytHyumEdXsAkgCOUf3Q==}

  b4a@1.6.6:
    resolution: {integrity: sha512-5Tk1HLk6b6ctmjIkAcU/Ujv/1WqiDl0F0JdRCR80VsOcUlHcu7pWeWRlOqQLHfDEsVx9YH/aif5AG4ehoCtTmg==}
@ -6761,6 +6761,15 @@ packages:
      debug:
        optional: true

+  follow-redirects@1.15.9:
+    resolution: {integrity: sha512-gew4GsXizNgdoRyqmyfMHyAmXsZDk6mHkSxZFCzW9gwlbtOW44CDtYavM+y+72qD/Vq2l550kMF52DT8fOLJqQ==}
+    engines: {node: '>=4.0'}
+    peerDependencies:
+      debug: '*'
+    peerDependenciesMeta:
+      debug:
+        optional: true
+
  for-each@0.3.3:
    resolution: {integrity: sha512-jqYfLp7mo9vIyQf8ykW2v7A+2N4QjeCeI5+Dz9XraiO1ign81wjiH7Fb9vSOWvQfNtmSa4H2RoQTrrXivdUZmw==}

@ -19224,9 +19233,9 @@ snapshots:

  axe-core@4.10.0: {}

-  axios@1.5.0:
+  axios@1.7.7:
    dependencies:
-      follow-redirects: 1.15.2
+      follow-redirects: 1.15.9
      form-data: 4.0.0
      proxy-from-env: 1.1.0
    transitivePeerDependencies:
@ -21461,6 +21470,8 @@ snapshots:

  follow-redirects@1.15.2: {}

+  follow-redirects@1.15.9: {}
+
  for-each@0.3.3:
    dependencies:
      is-callable: 1.2.7
--- a/src/client/package.json
+++ b/src/client/package.json
@ -55,7 +55,7 @@
    "ahooks": "^3.7.10",
    "antd": "^5.13.1",
    "array-move": "^3.0.1",
-    "axios": "^1.5.0",
+    "axios": "1.7.7",
    "bytemd": "^1.21.0",
    "class-variance-authority": "^0.7.0",
    "clsx": "^2.1.0",
--- a/src/server/package.json
+++ b/src/server/package.json
@ -30,7 +30,7 @@
    "@tianji/shared": "workspace:^",
    "@trpc/server": "^10.45.2",
    "accept-language-parser": "^1.5.0",
-    "axios": "^1.5.0",
+    "axios": "1.7.7",
    "badge-maker": "^3.3.1",
    "bcryptjs": "^2.4.3",
    "cache-manager": "^5.7.2",