Update axios version. CORS Vulnerability
RyanGSampson opened this issue · comments
Versions:
@inertiajs/core
version: #.#.#@inertiajs/vue2
version: #.#.#@inertiajs/vue3
version: #.#.#@inertiajs/react
version: #.#.#@inertiajs/svelte
version: #.#.#
Describe the problem:
Ineria core running on axios 1.2.0
Please update to 1.6.5
Steps to reproduce:
run npm audit
npm audit report
axios 0.8.1 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - GHSA-wf5p-g6vw-rhxx
No fix available
node_modules/@inertiajs/inertia/node_modules/axios
@inertiajs/inertia *
Depends on vulnerable versions of axios
node_modules/@inertiajs/inertia
@inertiajs/inertia-vue3 *
Depends on vulnerable versions of @inertiajs/inertia
node_modules/@inertiajs/inertia-vue3
3 moderate severity vulnerabilities
Some issues need review, and may require choosing
a different dependency.
Should be addressed by #1723
Yep, thanks @shengslogar — this one has been fixed in #1723 👍