From 02ec81556253ffe6aaba1468cb4244f8b59ed853 Mon Sep 17 00:00:00 2001 From: NickSdot <32384907+NickSdot@users.noreply.github.com> Date: Tue, 31 Mar 2026 21:49:40 +0800 Subject: [PATCH] [security] pin axios version (#6776) Active supply chain attack https://github.com/axios/axios/issues/10604 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index 0a76fd0f..3aa557cf 100644 --- a/package.json +++ b/package.json @@ -8,7 +8,7 @@ }, "devDependencies": { "@tailwindcss/vite": "^4.0.0", - "axios": "^1.11.0", + "axios": ">=1.11.0 <=1.14.0" "concurrently": "^9.0.1", "laravel-vite-plugin": "^3.0.0", "tailwindcss": "^4.0.0",