Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Is there any plan to fix GHSA-jr5f-v2jv-69x6 on 0.X version? #6824

Closed
thiagosanches opened this issue Mar 12, 2025 · 7 comments
Closed

Is there any plan to fix GHSA-jr5f-v2jv-69x6 on 0.X version? #6824

thiagosanches opened this issue Mar 12, 2025 · 7 comments

Comments

@thiagosanches
Copy link

thiagosanches commented Mar 12, 2025
edited
Loading

Hi axios team, good morning.

We are still using axios 0.29 and the issue (GHSA-jr5f-v2jv-69x6) still persists on it. Do we have a plan to update the 0.X versions? Currently, we cannot upgrade to 1.X due to incompatibilities with browserify, as it does not support ESM modules. Changing our entire building process now is not feasible.

Thank you,
Regards.
@suhaotian suhaotian mentioned this issue Mar 12, 2025
Closed
@thatguyinabeanie
Copy link

i made a PR for this
#6829

@thatguyinabeanie thatguyinabeanie mentioned this issue Mar 13, 2025
Merged
@behei-vonage
Copy link

is there any idea on when #6829 might be merged in?

@thatguyinabeanie
Copy link

is there any idea on when #6829 might be merged in?

+1.

any feedback on my PR would be greatly appreciated.
or if we can approve the running of the tests.

@jasonsaayman
Copy link
Member

working on merging and releasing

@thiagosanches
Copy link
Author

Hi @jasonsaayman , thanks for the update.
I couldn't see the release yet, or maybe I missed it?

@wwaaijer-exh
Copy link

It seem to have landed on 0.30.0 🎉

However the Security Advisory still only lists 1.8.2 as the patched version.
Are there any plans to update the Advisory?

Thanks! 🙏

@jasonsaayman
Copy link
Member

this is updated in the advisory thanks

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@jasonsaayman @thiagosanches @thatguyinabeanie @wwaaijer-exh @behei-vonage