jihun4452 opened a new pull request, #7699: URL: https://github.com/apache/incubator-seata/pull/7699
### Ⅰ. Describe what this PR did This PR upgrades **axios** in the console frontend to version ^1.12.2 (and updates the lockfile to 1.12.2) to address the security vulnerability **CVE-2025-58754**. ### Ⅱ. Does this pull request fix one issue? fixes #7659 ### Ⅲ. Why don't you add test cases (unit test/integration test)? No behavioral change was introduced—only a dependency version bump—so no new tests are required. ### Ⅳ. Describe how to verify it 1. Run `npm ls axios` → should output `[email protected]` 2. Confirm `package.json` contains `"axios": "^1.12.2"` 3. Confirm `package-lock.json` shows `axios 1.12.2` 4. (optional) Run `npm run build` to ensure the console frontend builds successfully. ### Ⅴ. Special notes for reviews - Scope strictly limited to axios dependency update. - No source-code or behavioral changes. - Maintains backward compatibility and aligns with Apache Seata’s security policy. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
