From dd359476148ccd605ab3dab51d856a3b38e7956d Mon Sep 17 00:00:00 2001
From: "snyk-io[bot]" <141718529+snyk-io[bot]@users.noreply.github.com>
Date: Sat, 11 Apr 2026 00:01:35 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-AXIOS-15965856
- https://snyk.io/vuln/SNYK-JS-AXIOS-15969258
---
 package-lock.json | 8 ++++----
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 467a30bc..bdee978a 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -13,7 +13,7 @@
         "@actions/github": "^9.0.0",
         "@slack/logger": "^4.0.1",
         "@slack/web-api": "^7.15.0",
-        "axios": "^1.14.0",
+        "axios": "^1.15.0",
         "axios-retry": "^4.5.0",
         "flat": "^6.0.1",
         "https-proxy-agent": "^8.0.0",
@@ -558,9 +558,9 @@
       "integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q=="
     },
     "node_modules/axios": {
-      "version": "1.14.0",
-      "resolved": "https://registry.npmjs.org/axios/-/axios-1.14.0.tgz",
-      "integrity": "sha512-3Y8yrqLSwjuzpXuZ0oIYZ/XGgLwUIBU3uLvbcpb0pidD9ctpShJd43KSlEEkVQg6DS0G9NKyzOvBfUtDKEyHvQ==",
+      "version": "1.15.0",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-1.15.0.tgz",
+      "integrity": "sha512-wWyJDlAatxk30ZJer+GeCWS209sA42X+N5jU2jy6oHTp7ufw8uzUTVFBX9+wTfAlhiJXGS0Bq7X6efruWjuK9Q==",
       "license": "MIT",
       "dependencies": {
         "follow-redirects": "^1.15.11",
diff --git a/package.json b/package.json
index fe033b7f..b1eea264 100644
--- a/package.json
+++ b/package.json
@@ -38,7 +38,7 @@
     "@actions/github": "^9.0.0",
     "@slack/logger": "^4.0.1",
     "@slack/web-api": "^7.15.0",
-    "axios": "^1.14.0",
+    "axios": "^1.15.0",
     "axios-retry": "^4.5.0",
     "flat": "^6.0.1",
     "https-proxy-agent": "^8.0.0",