From cc5d95df1bccc4101fc3d210558f944fe8bd6da9 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 29 Apr 2026 08:49:14 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-AXIOS-16298058 - https://snyk.io/vuln/SNYK-JS-AXIOS-16299923 - https://snyk.io/vuln/SNYK-JS-AXIOS-16299921 - https://snyk.io/vuln/SNYK-JS-AXIOS-16299904 - https://snyk.io/vuln/SNYK-JS-AXIOS-16298130 - https://snyk.io/vuln/SNYK-JS-AXIOS-16299819 - https://snyk.io/vuln/SNYK-JS-AXIOS-16298055 - https://snyk.io/vuln/SNYK-JS-AXIOS-16299925 --- package-lock.json | 35 +++++++++++++++++++++++------------ package.json | 2 +- 2 files changed, 24 insertions(+), 13 deletions(-) diff --git a/package-lock.json b/package-lock.json index c362200..37fcef7 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "doc2vec", - "version": "2.10.0", + "version": "2.10.1", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "doc2vec", - "version": "2.10.0", + "version": "2.10.1", "license": "ISC", "dependencies": { "@aws-sdk/client-s3": "^3.1004.0", @@ -14,7 +14,7 @@ "@mozilla/readability": "^0.4.4", "@qdrant/js-client-rest": "^1.13.0", "@qdrant/qdrant-js": "^1.13.0", - "axios": "^1.6.2", + "axios": "^1.15.2", "better-sqlite3": "^11.9.1", "chalk": "^5.4.1", "cheerio": "^1.0.0-rc.12", @@ -3354,13 +3354,23 @@ "integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q==" }, "node_modules/axios": { - "version": "1.8.4", - "resolved": "https://registry.npmjs.org/axios/-/axios-1.8.4.tgz", - "integrity": "sha512-eBSYY4Y68NNlHbHBMdeDmKNtDgXWhQsJcGqzO3iLUM0GraQFSS9cVgPX5I9b3lbdFKyYoAEGAZF1DwhTaljNAw==", + "version": "1.15.2", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.15.2.tgz", + "integrity": "sha512-wLrXxPtcrPTsNlJmKjkPnNPK2Ihe0hn0wGSaTEiHRPxwjvJwT3hKmXF4dpqxmPO9SoNb2FsYXj/xEo0gHN+D5A==", + "license": "MIT", "dependencies": { - "follow-redirects": "^1.15.6", - "form-data": "^4.0.0", - "proxy-from-env": "^1.1.0" + "follow-redirects": "^1.15.11", + "form-data": "^4.0.5", + "proxy-from-env": "^2.1.0" + } + }, + "node_modules/axios/node_modules/proxy-from-env": { + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/proxy-from-env/-/proxy-from-env-2.1.0.tgz", + "integrity": "sha512-cJ+oHTW1VAEa8cJslgmUZrc+sjRKgAKl3Zyse6+PV38hZe/V6Z14TbCuXcan9F9ghlz4QrFr2c92TNF82UkYHA==", + "license": "MIT", + "engines": { + "node": ">=10" } }, "node_modules/b4a": { @@ -4340,15 +4350,16 @@ "integrity": "sha512-0Zt+s3L7Vf1biwWZ29aARiVYLx7iMGnEUl9x33fbB/j3jR81u/O2LbqK+Bm1CDSNDKVtJ/YjwY7TUd5SkeLQLw==" }, "node_modules/follow-redirects": { - "version": "1.15.9", - "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.15.9.tgz", - "integrity": "sha512-gew4GsXizNgdoRyqmyfMHyAmXsZDk6mHkSxZFCzW9gwlbtOW44CDtYavM+y+72qD/Vq2l550kMF52DT8fOLJqQ==", + "version": "1.16.0", + "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.16.0.tgz", + "integrity": "sha512-y5rN/uOsadFT/JfYwhxRS5R7Qce+g3zG97+JrtFZlC9klX/W5hD7iiLzScI4nZqUS7DNUdhPgw4xI8W2LuXlUw==", "funding": [ { "type": "individual", "url": "https://github.com/sponsors/RubenVerborgh" } ], + "license": "MIT", "engines": { "node": ">=4.0" }, diff --git a/package.json b/package.json index 98a8193..d64a0a1 100644 --- a/package.json +++ b/package.json @@ -34,7 +34,7 @@ "@mozilla/readability": "^0.4.4", "@qdrant/js-client-rest": "^1.13.0", "@qdrant/qdrant-js": "^1.13.0", - "axios": "^1.6.2", + "axios": "^1.15.2", "better-sqlite3": "^11.9.1", "chalk": "^5.4.1", "cheerio": "^1.0.0-rc.12",