From 3d8881dd50383673c76b3772d9b9d4c1bf372fce Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 27 Dec 2023 14:41:12 +0000 Subject: [PATCH] fix: tasks/import-listings/package.json & tasks/import-listings/yarn.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-6124857 --- tasks/import-listings/package.json | 2 +- tasks/import-listings/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/tasks/import-listings/package.json b/tasks/import-listings/package.json index 840def4326..de37b40fec 100644 --- a/tasks/import-listings/package.json +++ b/tasks/import-listings/package.json @@ -16,7 +16,7 @@ "author": "Chris Casto ", "license": "ISC", "dependencies": { - "axios": "1.3.5", + "axios": "1.6.3", "knex": "2.5.0", "pg": "8.10.0", "typescript": "5.0.4" diff --git a/tasks/import-listings/yarn.lock b/tasks/import-listings/yarn.lock index 328b5a7b1b..cac54fcfb9 100644 --- a/tasks/import-listings/yarn.lock +++ b/tasks/import-listings/yarn.lock @@ -1618,10 +1618,10 @@ available-typed-arrays@^1.0.5: resolved "https://registry.yarnpkg.com/available-typed-arrays/-/available-typed-arrays-1.0.5.tgz#92f95616501069d07d10edb2fc37d3e1c65123b7" integrity sha512-DMD0KiN46eipeziST1LPP/STfDU0sufISXmjSgvVsoU2tqxctQeASejWcfNtxYKqETM1UxQ8sp2OrSBWpHY6sw== -axios@1.3.5: - version "1.3.5" - resolved "https://registry.yarnpkg.com/axios/-/axios-1.3.5.tgz#e07209b39a0d11848e3e341fa087acd71dadc542" - integrity sha512-glL/PvG/E+xCWwV8S6nCHcrfg1exGx7vxyUIivIA1iL7BIh6bePylCfVHwp6k13ao7SATxB6imau2kqY+I67kw== +axios@1.6.3: + version "1.6.3" + resolved "https://registry.yarnpkg.com/axios/-/axios-1.6.3.tgz#7f50f23b3aa246eff43c54834272346c396613f4" + integrity sha512-fWyNdeawGam70jXSVlKl+SUNVcL6j6W79CuSIPfi6HnDUmSCH6gyUys/HrqHeA/wU0Az41rRgean494d0Jb+ww== dependencies: follow-redirects "^1.15.0" form-data "^4.0.0"