Skip to content

Commit dc50d38

Browse files
committed
Upgrade axios and form-data to fix security vulnerabilities
- axios: ^1.7.7 → ^1.13.5 (fixes CWE-1321 Prototype Pollution, CWE-770 Resource Allocation) - form-data: ^4.0.0 → ^4.0.4 (fixes CWE-343 Predictable Value Range, CVSS 9.4)
1 parent 57c8fd5 commit dc50d38

2 files changed

Lines changed: 26 additions & 23 deletions

File tree

package-lock.json

Lines changed: 23 additions & 20 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "@sharpapi/sharpapi-node-core",
3-
"version": "1.3.0",
3+
"version": "1.3.1",
44
"description": "SharpAPI.com Node.js SDK Core - Shared functionality for SharpAPI clients",
55
"main": "src/index.js",
66
"scripts": {
@@ -22,8 +22,8 @@
2222
"author": "Dawid Makowski <contact@sharpapi.com>",
2323
"license": "MIT",
2424
"dependencies": {
25-
"axios": "^1.7.7",
26-
"form-data": "^4.0.0"
25+
"axios": "^1.13.5",
26+
"form-data": "^4.0.4"
2727
},
2828
"devDependencies": {
2929
"jest": "^29.7.0"

0 commit comments

Comments
 (0)