[Snyk] Upgrade axios from 1.6.0 to 1.6.2

[di55er]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade axios from 1.6.0 to 1.6.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 2 versions ahead of your current version.
• The recommended version was released a month ago, on 2023-11-14.

Release notes

Package name: axios

• 1.6.2 - 2023-11-14
  

  Release notes:

  Features

  • withXSRFToken: added withXSRFToken option as a workaround to achieve the old withCredentials behavior; (#6046) (cff9967)

  PRs

  • feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ( #6046 )

  
  📢 This PR added 'withXSRFToken' option as a replacement for old withCredentials behaviour. 
  You should now use withXSRFToken along with withCredential to get the old behavior.
  This functionality is considered as a fix.
  

  Contributors to this release

  • Dmitriy Mozgovoy
  • Ng Choon Khon (CK)
  • Muhammad Noman
• 1.6.1 - 2023-11-08
  

  Release notes:

  Bug Fixes

  • formdata: fixed content-type header normalization for non-standard browser environments; (#6056) (dd465ab)
  • platform: fixed emulated browser detection in node.js environment; (#6055) (3dc8369)

  Contributors to this release

  • Dmitriy Mozgovoy
  • Fabian Meyer
• 1.6.0 - 2023-10-26
  

  Release notes:

  Bug Fixes

  • CSRF: fixed CSRF vulnerability CVE-2023-45857 (#6028) (96ee232)
  • dns: fixed lookup function decorator to work properly in node v20; (#6011) (5aaff53)
  • types: fix AxiosHeaders types; (#5931) (a1c8ad0)

  PRs

  • CVE 2023 45857 ( #6028 )

  
  ⚠️ Critical vulnerability fix. See https://security.snyk.io/vuln/SNYK-JS-AXIOS-6032459
  

  Contributors to this release

  • Dmitriy Mozgovoy
  • Valentin Panov
  • Rinku Chaudhari

from axios GitHub release notes

Commit messages

Package name: axios

• b3be365 chore(release): v1.6.2 (#6082)
• 8739acb chore(ci): removed redundant release action; (#6081)
• bfa9c30 chore(docs): fix outdated grunt to npm scripts (#6073)
• a2b0fb3 chore(docs): update README.md (#6048)
• b12a608 chore(ci): removed paths-ignore filter; (#6080)
• 0c9d886 chore(ci): reworked ignoring files logic; (#6079)
• 30873ee chore(ci): add paths-ignore config to testing action; (#6078)
• cff9967 feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; (#6046)
• 7009715 chore(ci): fixed release notification action; (#6064)
• 7144f10 chore(ci): fixed release notification action; (#6063)
• f6d2cf9 chore(ci): fix publish action content permission; (#6061)
• a22f4b9 chore(release): v1.6.1 (#6060)
• cb8bb2b chore(ci): Publish to NPM with provenance (#5835)
• 37cbf92 chore(ci): added labeling and notification for published PRs; (#6059)
• dd465ab fix(formdata): fixed content-type header normalization for non-standard browser environments; (#6056)
• 3dc8369 fix(platform): fixed emulated browser detection in node.js environment; (#6055)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[cat2608]

Merged in #417