From 396c877db22f0572464aee0d893cbc8047a6ebcf Mon Sep 17 00:00:00 2001
From: Andy Park <atpark333@gmail.com>
Date: Tue, 1 Jul 2025 11:14:17 +0900
Subject: [PATCH] build: upgrade axios to 1.8.2

There is a Server-side Request Forgery (SSRF) vulnerability in Axios
version 1.7.8. This was fixed in version 1.8.2.
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 793c6d0..177cf2a 100644
--- a/package.json
+++ b/package.json
@@ -56,7 +56,7 @@
     "yarn.lock"
   ],
   "dependencies": {
-    "axios": "^1.7.8"
+    "axios": "^1.8.2"
   },
   "devDependencies": {
     "@commitlint/cli": "^8.1.0",
diff --git a/yarn.lock b/yarn.lock
index befa92c..3357815 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -3528,10 +3528,10 @@ axios-mock-adapter@^1.22.0:
     fast-deep-equal "^3.1.3"
     is-buffer "^2.0.5"
 
-axios@^1.7.8:
-  version "1.7.8"
-  resolved "https://registry.yarnpkg.com/axios/-/axios-1.7.8.tgz#1997b1496b394c21953e68c14aaa51b7b5de3d6e"
-  integrity sha512-Uu0wb7KNqK2t5K+YQyVCLM76prD5sRFjKHbJYCP1J7JFGEQ6nN7HWn9+04LAeiJ3ji54lgS/gZCH1oxyrf1SPw==
+axios@^1.8.2:
+  version "1.10.0"
+  resolved "https://registry.yarnpkg.com/axios/-/axios-1.10.0.tgz#af320aee8632eaf2a400b6a1979fa75856f38d54"
+  integrity sha512-/1xYAC4MP/HEG+3duIhFr4ZQXR4sQXOIe+o6sdqzeykGLx6Upp/1p8MHqhINOvGeP7xyNHe7tsiJByc4SSVUxw==
   dependencies:
     follow-redirects "^1.15.6"
     form-data "^4.0.0"