Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump axios from 0.21.1 to 0.21.4 #779

Merged
merged 1 commit into from
Sep 10, 2021
Merged

Bump axios from 0.21.1 to 0.21.4 #779

merged 1 commit into from
Sep 10, 2021

Conversation

tmarkley
Copy link
Contributor

Description

Addresses GHSA-cph5-m8f7-6c5x

Bumps axios from 0.21.1 to 0.21.4

Signed-off-by: Tommy Markley markleyt@amazon.com

Before

$ yarn why axios
yarn why v1.22.10
[1/4] Why do we have the module "axios"...?
[2/4] Initialising dependency graph...
warning Resolution field "typescript@4.0.2" is incompatible with requested version "typescript@~3.7.2"
[3/4] Finding dependency...
[4/4] Calculating file sizes...
=> Found "axios@0.21.1"
info Reasons this module exists
   - "_project_#@osd#dev-utils" depends on it
   - Hoisted from "_project_#@osd#dev-utils#axios"
   - Hoisted from "_project_#@osd#release-notes#axios"
   - Hoisted from "_project_#backport#axios"
   - Hoisted from "_project_#chromedriver#axios"
   - Hoisted from "_project_#@percy#agent#axios"
   - Hoisted from "_project_#@osd#ui-framework#yeoman-generator#yeoman-environment#npm-api#paged-request#axios"
info Disk size without dependencies: "512KB"
info Disk size with unique dependencies: "556KB"
info Disk size with transitive dependencies: "556KB"
info Number of shared dependencies: 1
Done in 1.34s.

None of these upstream dependencies (e.g. backport, percy, etc.) for axios have newer versions available, so we have to add a manual resolution for now.

Testing

Screen Shot 2021-09-10 at 12 20 42 AM

Issues Resolved

N/A

Check List

  • New functionality includes testing.
    • All tests pass
  • New functionality has been documented.
    • New functionality has javadoc added
  • Commits are signed per the DCO using --signoff

@tmarkley tmarkley added dependencies Pull requests that update a dependency file v1.1.0 labels Sep 10, 2021
@opensearch-ci-bot
Copy link
Collaborator

✅   DCO Check Passed 10a170e

ananzh pushed a commit to ananzh/OpenSearch-Dashboards that referenced this pull request Sep 10, 2021
@ananzh
[1.0]Bump axios from 0.21.1 to 0.21.4
2dae50c 
Addresses GHSA-cph5-m8f7-6c5x
Backport PR: opensearch-project#779

Bumps [axios](https://github.com/axios/axios) from 0.21.1 to 0.21.4
- [Release notes](https://github.com/axios/axios/releases/tag/v0.21.4)
- [Changelog](https://github.com/axios/axios/blob/v0.21.4/CHANGELOG.md)
- [Commits](axios/axios@v0.21.1...v0.21.4)

Signed-off-by: Tommy Markley <markleyt@amazon.com>
ananzh pushed a commit to ananzh/OpenSearch-Dashboards that referenced this pull request Sep 10, 2021
@ananzh
[1.x]Bump axios from 0.21.1 to 0.21.4
3e2b472 
Addresses GHSA-cph5-m8f7-6c5x
Backport PR: opensearch-project#779

Bumps [axios](https://github.com/axios/axios) from 0.21.1 to 0.21.4
- [Release notes](https://github.com/axios/axios/releases/tag/v0.21.4)
- [Changelog](https://github.com/axios/axios/blob/v0.21.4/CHANGELOG.md)
- [Commits](axios/axios@v0.21.1...v0.21.4)

Signed-off-by: Tommy Markley <markleyt@amazon.com>
This was referenced Sep 10, 2021
Merged
Merged
@ananzh ananzh merged commit 41073a1 into opensearch-project:main Sep 10, 2021
ananzh added a commit that referenced this pull request Sep 10, 2021
@ananzh
[1.0]Bump axios from 0.21.1 to 0.21.4 (#783)
d7a0191 
Addresses GHSA-cph5-m8f7-6c5x
Backport PR: #779

Bumps [axios](https://github.com/axios/axios) from 0.21.1 to 0.21.4
- [Release notes](https://github.com/axios/axios/releases/tag/v0.21.4)
- [Changelog](https://github.com/axios/axios/blob/v0.21.4/CHANGELOG.md)
- [Commits](axios/axios@v0.21.1...v0.21.4)

Signed-off-by: Tommy Markley <markleyt@amazon.com>

Co-authored-by: Tommy Markley <markleyt@amazon.com>
ananzh added a commit that referenced this pull request Sep 10, 2021
@ananzh
[1.x]Bump axios from 0.21.1 to 0.21.4 (#784)
1f4aa89 
Addresses GHSA-cph5-m8f7-6c5x
Backport PR: #779

Bumps [axios](https://github.com/axios/axios) from 0.21.1 to 0.21.4
- [Release notes](https://github.com/axios/axios/releases/tag/v0.21.4)
- [Changelog](https://github.com/axios/axios/blob/v0.21.4/CHANGELOG.md)
- [Commits](axios/axios@v0.21.1...v0.21.4)

Signed-off-by: Tommy Markley <markleyt@amazon.com>

Co-authored-by: Tommy Markley <markleyt@amazon.com>
ananzh pushed a commit to ananzh/OpenSearch-Dashboards that referenced this pull request Sep 10, 2021
@ananzh
[1.1]Bump axios from 0.21.1 to 0.21.4
1ba396b 
Addresses GHSA-cph5-m8f7-6c5x
Backport PR: opensearch-project#779

Bumps [axios](https://github.com/axios/axios) from 0.21.1 to 0.21.4
- [Release notes](https://github.com/axios/axios/releases/tag/v0.21.4)
- [Changelog](https://github.com/axios/axios/blob/v0.21.4/CHANGELOG.md)
- [Commits](axios/axios@v0.21.1...v0.21.4)

Signed-off-by: Tommy Markley <markleyt@amazon.com>
@ananzh ananzh mentioned this pull request Sep 10, 2021
Merged
5 tasks
ananzh added a commit that referenced this pull request Sep 10, 2021
@ananzh
[1.1]Bump axios from 0.21.1 to 0.21.4 (#789)
a900512 
Addresses GHSA-cph5-m8f7-6c5x
Backport PR: #779

Bumps [axios](https://github.com/axios/axios) from 0.21.1 to 0.21.4
- [Release notes](https://github.com/axios/axios/releases/tag/v0.21.4)
- [Changelog](https://github.com/axios/axios/blob/v0.21.4/CHANGELOG.md)
- [Commits](axios/axios@v0.21.1...v0.21.4)

Signed-off-by: Tommy Markley <markleyt@amazon.com>

Co-authored-by: Tommy Markley <markleyt@amazon.com>
@tmarkley tmarkley deleted the axios-0.21.4 branch September 24, 2021 15:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@boktorbb boktorbb boktorbb approved these changes

@ananzh ananzh ananzh approved these changes

@kavilla kavilla Awaiting requested review from kavilla kavilla is a code owner

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file v1.1.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@tmarkley @opensearch-ci-bot @boktorbb @ananzh