This is an automated email from the ASF dual-hosted git repository.
morrySnow pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/doris.git
The following commit(s) were added to refs/heads/master by this push:
new eab8ef409ea [fix](build) Bump UI axios to patched release (#63185)
eab8ef409ea is described below
commit eab8ef409ea89baa4a1e76988afa4fc07e19b474
Author: Arpit Jain <[email protected]>
AuthorDate: Tue Jun 2 11:51:06 2026 +0900
[fix](build) Bump UI axios to patched release (#63185)
### What problem does this PR solve?
Problem Summary:
The legacy UI package depends on `axios` `^0.19.2`, which is affected by
known security advisories. This updates the dependency to a patched
release line (`^1.16.0`) to reduce exposure from vulnerable transitive
HTTP client behavior.
Signed-off-by: Arpit Jain <[email protected]>
---
ui/package.json | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/ui/package.json b/ui/package.json
index 0888a4483b7..1375edfe1d0 100644
--- a/ui/package.json
+++ b/ui/package.json
@@ -30,7 +30,7 @@
"@ant-design/icons": "^4.1.0",
"@umijs/hooks": "^1.9.3",
"antd": "^4.5.4",
- "axios": "^0.19.2",
+ "axios": "^1.16.0",
"classnames": "^2.2.6",
"i18next": "^19.7.0",
"i18next-browser-languagedetector": "^6.0.1",
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
