[Snyk] Security upgrade axios from 1.7.7 to 1.7.8

[pranay01]

Snyk has created this PR to fix 1 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• frontend/package.json
• frontend/yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue
	Cross-site Scripting (XSS) SNYK-JS-AXIOS-6671926

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Scripting (XSS)

---

Important

Upgrade axios to 1.7.8 in frontend/package.json and frontend/yarn.lock to fix XSS vulnerability.

• Dependencies:
  • Upgrade axios from 1.7.7 to 1.7.8 in frontend/package.json and frontend/yarn.lock to fix Cross-site Scripting (XSS) vulnerability.
• Security:
  • Addresses vulnerability [SNYK-JS-AXIOS-6671926].
• Misc:
  • Note for zero-installs users: Run yarn to update ./yarn/cache directory.

^{This description was created by for aeb7aca. It will automatically update as commits are pushed.}

[CLAassistant]

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}

[github-actions]

Build Error! No Linked Issue found. Please link an issue or mention it in the body using #<issue_id>

[ellipsis-dev]

👍 Looks good to me! Reviewed everything up to aeb7aca in 10 seconds

More details

• Looked at 13 lines of code in 1 files
• Skipped 1 files when reviewing.
• Skipped posting 2 drafted comments based on config settings.

1. frontend/package.json:54

• Draft comment:
  Updated axios from 1.7.7 to 1.7.8 to address a security vulnerability (Cross-site Scripting - XSS). Ensure that this update does not introduce any breaking changes in your application.
• Reason this comment was not posted:
  Confidence changes required: 50%
  The PR updates axios from 1.7.7 to 1.7.8 to address a security vulnerability. This change is reflected in the package.json file.

2. frontend/package.json:54

• Draft comment:
  The axios version has been correctly updated to 1.7.8. No issues here.
• Reason this comment was not posted:
  Confidence changes required: 0%
  The package.json file looks fine with the axios upgrade. No issues related to the rules provided.

Workflow ID: wflow_pQG7jE5rcvqVc8Qo

---

You can customize Ellipsis with 👍 / 👎 feedback, review rules, user-specific overrides, quiet mode, and more.

[github-actions]

Build Error! No Linked Issue found. Please link an issue or mention it in the body using #<issue_id>