Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade axios to remove all CVE vulnerabilities #1267

Closed
kyrielia opened this issue Nov 20, 2023 · 1 comment
Closed

Upgrade axios to remove all CVE vulnerabilities #1267

kyrielia opened this issue Nov 20, 2023 · 1 comment

Comments

@kyrielia
Copy link
Contributor

kyrielia commented Nov 20, 2023
edited
Loading

Context

Axios has a number of CVEs associated with it:
https://security.snyk.io/package/npm/axios

Contentful-migration currently uses v1.5.1:
https://github.com/contentful/contentful-migration/blob/master/package.json#L55

Axios should be updated to the latest version as soon as possible to remove all vulnerability issues. Ideally this should be released as soon as possible.
@kyrielia kyrielia mentioned this issue Nov 20, 2023
Merged
@jjolton-contentful
Copy link
Contributor

hey @kyrielia thanks for reporting, this has since been resolved so I'll go ahead and close this issue now. as of #1452 and v4.26.3 contentful-migration is set up with the latest axios v1.7.9

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kyrielia @jjolton-contentful