Skip to content
Launch GitLab Knowledge Graph

[Security] Upgrade vulnerable npm dependencies

kellyrequested to merge
fix/upgrade-vulnerable-dependencies into main

Security Fix

This MR addresses three HIGH severity vulnerabilities in npm dependencies.

Vulnerabilities Fixed

  • axios 0.21.1 -> 1.6.2 (CVE-2023-45857)
  • lodash 4.17.15 -> 4.17.21 (CVE-2020-8203)
  • minimist 1.2.5 -> 1.2.8 (CVE-2020-7598, CVE-2021-44906)

Closes #12

Merge request reports