From 600baedbff8fc8cb830853b3e8016ac070f22b80 Mon Sep 17 00:00:00 2001
From: Typeform Security Bot <45073526+tf-security@users.noreply.github.com>
Date: Thu, 22 Aug 2024 11:38:41 +0200
Subject: [PATCH] fix: package.json & yarn.lock to reduce vulnerabilities
 (#127)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-7361793

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 809f6e2..ad068fa 100644
--- a/package.json
+++ b/package.json
@@ -56,7 +56,7 @@
     "yarn.lock"
   ],
   "dependencies": {
-    "axios": "^1.7.0"
+    "axios": "^1.7.4"
   },
   "devDependencies": {
     "@commitlint/cli": "^8.1.0",
diff --git a/yarn.lock b/yarn.lock
index bbf691f..81bdfba 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -3528,10 +3528,10 @@ axios-mock-adapter@^1.22.0:
     fast-deep-equal "^3.1.3"
     is-buffer "^2.0.5"
 
-axios@^1.7.0:
-  version "1.7.2"
-  resolved "https://registry.yarnpkg.com/axios/-/axios-1.7.2.tgz#b625db8a7051fbea61c35a3cbb3a1daa7b9c7621"
-  integrity sha512-2A8QhOMrbomlDuiLeK9XibIBzuHeRcqqNOHp0Cyp5EoJ1IFDh+XZH3A6BkXtv0K4gFGCI0Y4BM7B1wOEi0Rmgw==
+axios@^1.7.4:
+  version "1.7.4"
+  resolved "https://registry.yarnpkg.com/axios/-/axios-1.7.4.tgz#4c8ded1b43683c8dd362973c393f3ede24052aa2"
+  integrity sha512-DukmaFRnY6AzAALSH4J2M3k6PkaC+MfaAGdEERRWcC9q3/TWQwLpHR8ZRLKTdQ3aBDL64EdluRDjJqKw+BPZEw==
   dependencies:
     follow-redirects "^1.15.6"
     form-data "^4.0.0"