From 252e28739e6f02e338206204e46b8d46dd9ff674 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Mon, 27 Apr 2026 08:45:50 +0000
Subject: [PATCH] fix: core/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-16299923
- https://snyk.io/vuln/SNYK-JS-AXIOS-16299921
- https://snyk.io/vuln/SNYK-JS-AXIOS-16299904
---
 core/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/package.json b/core/package.json
index a2992815dcf..3bcb8a4c612 100644
--- a/core/package.json
+++ b/core/package.json
@@ -76,7 +76,7 @@
     "@xenova/transformers": "2.14.0",
     "adf-to-md": "^1.1.0",
     "async-mutex": "^0.5.0",
-    "axios": "^1.6.7",
+    "axios": "^1.15.2",
     "cheerio": "^1.0.0-rc.12",
     "commander": "^12.0.0",
     "comment-json": "^4.2.3",
@@ -123,7 +123,7 @@
     "tree-sitter-wasms": "^0.1.11",
     "untildify": "^6.0.0",
     "uuid": "^9.0.1",
-    "vectordb": "0.4.20",
+    "vectordb": "0.21.2",
     "web-tree-sitter": "^0.21.0",
     "win-ca": "^3.5.1",
     "wink-nlp-utils": "^2.1.0",