From 088116956d5d03282d53a3c851993fae4fbff127 Mon Sep 17 00:00:00 2001 From: Yashvanth B L Date: Tue, 5 May 2026 09:24:27 +0000 Subject: [PATCH] fix(deps): upgrade axios to 1.15.2 to patch CVE vulnerabilities Upgrade axios from 1.15.0 to 1.15.2 in both the yarn resolutions and root dependencies to address HIGH severity advisories: - GHSA-pmwg-cvhr-8vh7 (patched in 1.15.1) - GHSA-pf86-5x62-jrwf (patched in 1.15.1) - GHSA-6chq-wfr3-2hj9 (patched in 1.15.1) - GHSA-q8qp-cvcw-x6jj (patched in 1.15.2) Ticket: CGD-1025 --- package.json | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/package.json b/package.json index 7c5b9d93c5..0d2c19bcfb 100644 --- a/package.json +++ b/package.json @@ -102,7 +102,7 @@ "@polkadot/keyring": "13.5.6", "elliptic": "^6.6.1", "cookie": "^0.7.1", - "axios": "1.15.0", + "axios": "1.15.2", "canvg": "4.0.3", "**/stellar-sdk/**/bignumber.js": "4.1.0", "**/stellar-base/**/bignumber.js": "4.1.0", @@ -165,7 +165,7 @@ "test:prepare-release": "mocha --require tsx ./scripts/tests/prepareRelease/prepare-release-main.test.ts" }, "dependencies": { - "axios": "1.15.0", + "axios": "1.15.2", "terser": "^5.14.2", "tmp": "^0.2.3", "bigint-buffer": "npm:@trufflesuite/bigint-buffer@1.1.10"