Bump axios from 1.6.3 to 1.6.4 in /webapp (!387) · Merge requests · school / jaar2 / lalaland

Dependabot requested to merge dependabot-npm_and_yarn-webapp-axios-1.6.4 into master Jan 04, 2024

Bumps axios from 1.6.3 to 1.6.4.

Release notes

Release v1.6.4

Release notes:

Bug Fixes

security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)

security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)

Contributors to this release

Jay

Dmitriy Mozgovoy

Guy Nesher

Changelog

Sourced from axios's changelog.

1.6.4 (2024-01-03)

Bug Fixes

security: fixed formToJSON prototype pollution vulnerability; (#6167) (3c0c11c)

security: fixed security vulnerability in follow-redirects (#6163) (75af1cd)

Contributors to this release

Jay

Dmitriy Mozgovoy

Guy Nesher

Commits

8790b8e chore(release): v1.6.4 (#6173)
0ad520d chore(ci): fix notify action; (#6172)
3c0c11c fix(security): fixed formToJSON prototype pollution vulnerability; (#6167)
75af1cd fix(security): fixed security vulnerability in follow-redirects (#6163)
90864b3 docs: update logos
1542719 docs: updated headline sponsors
See full diff in compare view

Dependabot commands

You can trigger Dependabot actions by commenting on this MR

$dependabot rebase will rebase this MR
$dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

Bump axios from 1.6.3 to 1.6.4 in /webapp

Release v1.6.4

Release notes:

Bug Fixes

Contributors to this release

1.6.4 (2024-01-03)

Bug Fixes

Contributors to this release

Merge request reports