Axios v1.7.9 has a security vulnerability and should be upgraded to latest

[joshmossas]

Dependabot is giving me the following alert for Axios v1.7.9 which is being used by this package.

axios Requests Vulnerable To Possible SSRF and Credential Leakage via Absolute URL

The vulnerability was reported originally here axios/axios#6463

The latest version of Axios has a fix that removes this vulnerability.

Proposed Fix

Upgrade to latest version of Axios (v1.8.2)
Alternatively Axios could be replaced as mentioned in #2403 but that would be more involved.

[wonderWoman1408]

any news regarding this topic? Will Contentful upgrade to the latest Axios version? (now it's 1.8.3 :) )

[cupofjoakim]

I made a quick PR to fix this, lets see if the maintainers are interested.

[cupofjoakim]

Ah, must've goofed somewhere. According to dependabot this should've gone to prod already on 11.5.7: #2468