[PR #758] [MERGED] chore(deps-dev): bump axios from 0.30.0 to 0.30.2 in /web #763

New issue

Closed

opened 2026-03-03 16:40:00 +03:00 by kerem · 0 comments

kerem commented

2026-03-03 16:40:00 +03:00

Owner

📋 Pull Request Information

Original PR: https://github.com/NdoleStudio/httpsms/pull/758
Author: @dependabot[bot]
Created: 10/1/2025
Status: ✅ Merged
Merged: 10/2/2025
Merged by: @AchoArnold

Base: main ← Head: dependabot/npm_and_yarn/web/axios-0.30.2

📝 Commits (1)

7445a10 chore(deps-dev): bump axios from 0.30.0 to 0.30.2 in /web

📊 Changes

2 files changed (+17 additions, -16 deletions)

View changed files

📝 web/package.json (+1 -1)
📝 web/pnpm-lock.yaml (+16 -15)

📄 Description

Bumps axios from 0.30.0 to 0.30.2.

Release notes

Sourced from axios's releases.

v0.30.2

What's Changed

Backport maxContentLength vulnerability fix to v0.x by @FeBe95 in axios/axios#7034

New Contributors

@FeBe95 made their first contribution in axios/axios#7034

Full Changelog: https://github.com/axios/axios/compare/v0.30.1...v0.30.2

Release v0.30.1

Release notes:

Bug Fixes

chore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by @wolandec in axios/axios#6978

Contributors to this release

@wolandec made their first contribution in axios/axios#6978

Full Changelog: https://github.com/axios/axios/compare/v0.30.0...v0.30.1

Commits

2fcb4ec chore: v0.30.2
153f483 chore: preversion
ee548ff fix: tests failing
a1b1d3f fix: backport maxContentLength vulnerability fix to v0.x (#7034)
b17c4de chore: build latest version
ad6b82a chore: build latest version
da447d5 chore(deps): bump form-data from 4.0.0 to 4.0.4 (#6978)
See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
axios	[>= 1.a, < 2]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/NdoleStudio/httpsms/pull/758 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 10/1/2025 **Status:** ✅ Merged **Merged:** 10/2/2025 **Merged by:** [@AchoArnold](https://github.com/AchoArnold) **Base:** `main` ← **Head:** `dependabot/npm_and_yarn/web/axios-0.30.2` --- ### 📝 Commits (1) - [`7445a10`](https://github.com/NdoleStudio/httpsms/commit/7445a10eafcdd846b86a47762be87e5dbdafe970) chore(deps-dev): bump axios from 0.30.0 to 0.30.2 in /web ### 📊 Changes **2 files changed** (+17 additions, -16 deletions) <details> <summary>View changed files</summary> 📝 `web/package.json` (+1 -1) 📝 `web/pnpm-lock.yaml` (+16 -15) </details> ### 📄 Description Bumps [axios](https://github.com/axios/axios) from 0.30.0 to 0.30.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/releases">axios's releases</a>.</em></p> <blockquote> <h2>v0.30.2</h2> <h2>What's Changed</h2> <ul> <li>Backport <code>maxContentLength</code> vulnerability fix to v0.x by <a href="https://github.com/FeBe95"><code>@FeBe95</code></a> in <a href="https://redirect.github.com/axios/axios/pull/7034">axios/axios#7034</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/FeBe95"><code>@FeBe95</code></a> made their first contribution in <a href="https://redirect.github.com/axios/axios/pull/7034">axios/axios#7034</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/axios/axios/compare/v0.30.1...v0.30.2">https://github.com/axios/axios/compare/v0.30.1...v0.30.2</a></p> <h2>Release v0.30.1</h2> <h2>Release notes:</h2> <h3>Bug Fixes</h3> <ul> <li>chore(deps): bump form-data from 4.0.0 to 4.0.4 for v0.x by <a href="https://github.com/wolandec"><code>@wolandec</code></a> in <a href="https://redirect.github.com/axios/axios/pull/6978">axios/axios#6978</a></li> </ul> <h3>Contributors to this release</h3> <ul> <li><a href="https://github.com/wolandec"><code>@wolandec</code></a> made their first contribution in <a href="https://redirect.github.com/axios/axios/pull/6978">axios/axios#6978</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/axios/axios/compare/v0.30.0...v0.30.1">https://github.com/axios/axios/compare/v0.30.0...v0.30.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/axios/axios/commit/2fcb4ec5a11710ac26f9f89cb7d46dd51a1cf013"><code>2fcb4ec</code></a> chore: v0.30.2</li> <li><a href="https://github.com/axios/axios/commit/153f483f9793251d4ebd0912ea6aa92034429c9f"><code>153f483</code></a> chore: preversion</li> <li><a href="https://github.com/axios/axios/commit/ee548ffbf6cd26d2277b15cd1cf5b5ee192dd566"><code>ee548ff</code></a> fix: tests failing</li> <li><a href="https://github.com/axios/axios/commit/a1b1d3f073a988601583a604f5f9f5d05a3d0b67"><code>a1b1d3f</code></a> fix: backport <code>maxContentLength</code> vulnerability fix to v0.x (<a href="https://redirect.github.com/axios/axios/issues/7034">#7034</a>)</li> <li><a href="https://github.com/axios/axios/commit/b17c4dea1b95a873667e1c950e4749894a44682c"><code>b17c4de</code></a> chore: build latest version</li> <li><a href="https://github.com/axios/axios/commit/ad6b82a9698b55f5caf95d96625a7ba64f79f1b4"><code>ad6b82a</code></a> chore: build latest version</li> <li><a href="https://github.com/axios/axios/commit/da447d596fd82792bf775b245e91d5c9e18c8d80"><code>da447d5</code></a> chore(deps): bump form-data from 4.0.0 to 4.0.4 (<a href="https://redirect.github.com/axios/axios/issues/6978">#6978</a>)</li> <li>See full diff in <a href="https://github.com/axios/axios/compare/v0.30.0...v0.30.2">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | axios | [>= 1.a, < 2] | </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios&package-manager=npm_and_yarn&previous-version=0.30.0&new-version=0.30.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>