Title: Bump axios from 1.3.4 to 1.6.0 in /website by dependabot[bot] · Pull Request #2 · TestOrgForGitSec/gitsecurity-python · GitHub
Open Graph Title: Bump axios from 1.3.4 to 1.6.0 in /website by dependabot[bot] · Pull Request #2 · TestOrgForGitSec/gitsecurity-python
X Title: Bump axios from 1.3.4 to 1.6.0 in /website by dependabot[bot] · Pull Request #2 · TestOrgForGitSec/gitsecurity-python
Description: Bumps axios from 1.3.4 to 1.6.0.
Release notes
Sourced from axios's releases.
Release v1.6.0
Release notes:
Bug Fixes
CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)
dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)
types: fix AxiosHeaders types; (#5931) (a1c8ad0)
PRs
CVE 2023 45857 ( #6028 )
⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
Contributors to this release
Dmitriy Mozgovoy
Valentin Panov
Rinku Chaudhari
Release v1.5.1
Release notes:
Bug Fixes
adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)
formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)
headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)
types: removed duplicated code (9e62056)
Contributors to this release
Dmitriy Mozgovoy
David Dallas
Sean Sattler
Mustafa Ateş Uzun
Przemyslaw Motacki
Michael Di Prisco
Release v1.5.0
Release notes:
Bug Fixes
adapter: make adapter loading error more clear by using platform-specific adapters explicitly (#5837) (9a414bb)
dns: fixed cacheable-lookup integration; (#5836) (b3e327d)
headers: added support for setting header names that overlap with class methods; (#5831) (d8b4ca0)
headers: fixed common Content-Type header merging; (#5832) (8fda276)
Features
... (truncated)
Changelog
Sourced from axios's changelog.
1.6.0 (2023-10-26)
Bug Fixes
CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)
dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)
types: fix AxiosHeaders types; (#5931) (a1c8ad0)
PRs
CVE 2023 45857 ( #6028 )
⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
Contributors to this release
Dmitriy Mozgovoy
Valentin Panov
Rinku Chaudhari
1.5.1 (2023-09-26)
Bug Fixes
adapters: improved adapters loading logic to have clear error messages; (#5919) (e410779)
formdata: fixed automatic addition of the Content-Type header for FormData in non-browser environments; (#5917) (bc9af51)
headers: allow content-encoding header to handle case-insensitive values (#5890) (#5892) (4c89f25)
types: removed duplicated code (9e62056)
Contributors to this release
Dmitriy Mozgovoy
David Dallas
Sean Sattler
Mustafa Ateş Uzun
Przemyslaw Motacki
Michael Di Prisco
PRs
CVE 2023 45857 ( #6028 )
⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
1.5.0 (2023-08-26)
... (truncated)
Commits
f7adacd chore(release): v1.6.0 (#6031)
9917e67 chore(ci): fix release-it arg; (#6032)
96ee232 fix(CSRF): fixed CSRF vulnerability CVE-2023-45857 (#6028)
7d45ab2 chore(tests): fixed tests to pass in node v19 and v20 with keep-alive enabl...
5aaff53 fix(dns): fixed lookup function decorator to work properly in node v20; (#6011)
a48a63a chore(docs): added AxiosHeaders docs; (#5932)
a1c8ad0 fix(types): fix AxiosHeaders types; (#5931)
2ac731d chore(docs): update readme.md (#5889)
88fb52b chore(release): v1.5.1 (#5920)
e410779 fix(adapters): improved adapters loading logic to have clear error messages; ...
Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show
Open Graph Description: Bumps axios from 1.3.4 to 1.6.0. Release notes Sourced from axios's releases. Release v1.6.0 Release notes: Bug Fixes CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232) dns: fix...
X Description: Bumps axios from 1.3.4 to 1.6.0. Release notes Sourced from axios's releases. Release v1.6.0 Release notes: Bug Fixes CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232) dns:...
Opengraph URL: https://github.com/TestOrgForGitSec/gitsecurity-python/pull/2
X: @github
Domain: github.com
| route-pattern | /:user_id/:repository/pull/:id/files(.:format) |
| route-controller | pull_requests |
| route-action | files |
| fetch-nonce | v2:59b9f1b1-0adf-f877-2d62-34d1b8f49b1c |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | 9C18:2C2A02:2494A35:329A098:6A4F51BE |
| html-safe-nonce | 0fefa8c05c44fdfc713f1a741c2ca7e44f5879e86f499176aa81b765f300d29f |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI5QzE4OjJDMkEwMjoyNDk0QTM1OjMyOUEwOTg6NkE0RjUxQkUiLCJ2aXNpdG9yX2lkIjoiNjIwNjA1NzE5MTM1MjI1OTAwNiIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | b98198b125d889805e2bd3ee82b84e3bfd01bea106ad670031d10ba8e1ac38f6 |
| hovercard-subject-tag | pull_request:1718809440 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/TestOrgForGitSec/gitsecurity-python/pull/2/files |
| twitter:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| twitter:card | summary_large_image |
| og:image | https://avatars.githubusercontent.com/in/29110?s=400&v=4 |
| og:image:alt | Bumps axios from 1.3.4 to 1.6.0. Release notes Sourced from axios's releases. Release v1.6.0 Release notes: Bug Fixes CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232) dns: fix... |
| og:site_name | GitHub |
| og:type | object |
| hostname | github.com |
| expected-hostname | github.com |
| None | b92d11c0aa4a77d54ef4af1078b6a15fb5a70a215b30c4ecf28889d5a8e656d9 |
| turbo-cache-control | no-preview |
| diff-view | unified |
| go-import | github.com/TestOrgForGitSec/gitsecurity-python git https://github.com/TestOrgForGitSec/gitsecurity-python.git |
| octolytics-dimension-user_id | 139981999 |
| octolytics-dimension-user_login | TestOrgForGitSec |
| octolytics-dimension-repository_id | 753517181 |
| octolytics-dimension-repository_nwo | TestOrgForGitSec/gitsecurity-python |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | true |
| octolytics-dimension-repository_parent_id | 753481735 |
| octolytics-dimension-repository_parent_nwo | cbc-GithubSecurity/gitsecurity-python |
| octolytics-dimension-repository_network_root_id | 577603990 |
| octolytics-dimension-repository_network_root_nwo | LAION-AI/Open-Assistant |
| turbo-body-classes | logged-out env-production page-responsive full-width |
| disable-turbo | true |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 4b249b445842943ed31549e027f57a8ade9881ed |
| ui-target | canary-2 |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width