chore(deps): Bump axios from 1.6.3 to 1.6.4 #549

dependabot · 2024-01-04T07:48:11Z

Bumps axios from 1.6.3 to 1.6.4.

Release notes

Release v1.6.4

Release notes:

Bug Fixes

security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)

security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)

Contributors to this release

Jay

Dmitriy Mozgovoy

Guy Nesher

Changelog

Sourced from axios's changelog.

1.6.4 (2024-01-03)

Bug Fixes

security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)

security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)

Contributors to this release

Jay

Dmitriy Mozgovoy

Guy Nesher

Commits

8790b8e chore(release): v1.6.4 (#6173)
0ad520d chore(ci): fix notify action; (#6172)
3c0c11c fix(security): fixed formToJSON prototype pollution vulnerability; (#6167)
75af1cd fix(security): fixed security vulnerability in follow-redirects (#6163)
90864b3 docs: update logos
1542719 docs: updated headline sponsors
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

vercel · 2024-01-04T07:48:13Z

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
docs-v1	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 4, 2024 9:48am
docs-v2	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 4, 2024 9:48am
visualization	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 4, 2024 9:48am

changeset-bot · 2024-01-04T07:48:14Z

⚠️ No Changeset found

Latest commit: 5338784

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

codesandbox-ci · 2024-01-04T07:50:25Z

This pull request is automatically built and testable in CodeSandbox.

To see build info of the built libraries, click here or the icon next to each commit SHA.

codecov · 2024-01-04T07:50:34Z

Codecov Report

Merging #549 (5338784) into main (0a5b584) will not change coverage.
The diff coverage is n/a.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #549   +/-   ##
=======================================
  Coverage   84.36%   84.36%           
=======================================
  Files          29       29           
  Lines         467      467           
  Branches      109      109           
=======================================
  Hits          394      394           
  Misses         63       63           
  Partials       10       10

Components	Coverage Δ
@suspensive/react	`100.00% <ø> (ø)`
@suspensive/react-query	`0.00% <ø> (ø)`
@suspensive/react-await	`100.00% <ø> (ø)`
@suspensive/react-image	`24.00% <ø> (ø)`

manudeli · 2024-01-04T09:42:54Z

@dependabot recreate

Bumps [axios](https://github.com/axios/axios) from 1.6.3 to 1.6.4. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.6.3...v1.6.4) --- updated-dependencies: - dependency-name: axios dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot requested review from manudeli, okinawaa and minsoo-web as code owners January 4, 2024 07:48

dependabot bot added the dependencies label Jan 4, 2024

github-actions bot added the visualization label Jan 4, 2024

vercel bot temporarily deployed to Preview – docs-v2 January 4, 2024 07:54 Inactive

vercel bot temporarily deployed to Preview – docs-v1 January 4, 2024 07:56 Inactive

vercel bot temporarily deployed to Preview – visualization January 4, 2024 07:57 Inactive

dependabot bot force-pushed the dependabot/npm_and_yarn/axios-1.6.4 branch from 2196a50 to 5338784 Compare January 4, 2024 09:44

manudeli approved these changes Jan 4, 2024

View reviewed changes

vercel bot temporarily deployed to Preview – visualization January 4, 2024 09:46 Inactive

vercel bot temporarily deployed to Preview – docs-v2 January 4, 2024 09:47 Inactive

vercel bot temporarily deployed to Preview – docs-v1 January 4, 2024 09:48 Inactive

manudeli merged commit e021bb9 into main Jan 4, 2024

manudeli deleted the dependabot/npm_and_yarn/axios-1.6.4 branch January 4, 2024 09:50

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): Bump axios from 1.6.3 to 1.6.4 #549

chore(deps): Bump axios from 1.6.3 to 1.6.4 #549

dependabot bot commented on behalf of github Jan 4, 2024 •

edited

Loading

vercel bot commented Jan 4, 2024 •

edited

Loading

changeset-bot bot commented Jan 4, 2024 •

edited

Loading

codesandbox-ci bot commented Jan 4, 2024 •

edited

Loading

codecov bot commented Jan 4, 2024 •

edited

Loading

manudeli commented Jan 4, 2024

chore(deps): Bump axios from 1.6.3 to 1.6.4 #549

chore(deps): Bump axios from 1.6.3 to 1.6.4 #549

Conversation

dependabot bot commented on behalf of github Jan 4, 2024 • edited Loading

Release v1.6.4

Release notes:

Bug Fixes

Contributors to this release

1.6.4 (2024-01-03)

Bug Fixes

Contributors to this release

vercel bot commented Jan 4, 2024 • edited Loading

changeset-bot bot commented Jan 4, 2024 • edited Loading

⚠️ No Changeset found

codesandbox-ci bot commented Jan 4, 2024 • edited Loading

codecov bot commented Jan 4, 2024 • edited Loading

Codecov Report

manudeli commented Jan 4, 2024

dependabot bot commented on behalf of github Jan 4, 2024 •

edited

Loading

vercel bot commented Jan 4, 2024 •

edited

Loading

changeset-bot bot commented Jan 4, 2024 •

edited

Loading

codesandbox-ci bot commented Jan 4, 2024 •

edited

Loading

codecov bot commented Jan 4, 2024 •

edited

Loading