Skip to content

chore(deps): update dependency axios to v1.18.1#165

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/axios-1.x-lockfile
Open

chore(deps): update dependency axios to v1.18.1#165
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/axios-1.x-lockfile

Conversation

@renovate

@renovate renovate Bot commented May 13, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
axios (source) 1.15.01.18.1 age confidence

Release Notes

axios/axios (axios)

v1.18.1

Compare Source

v1.18.1 — June 21, 2026

This release focuses on Node HTTP adapter fixes, safer AxiosError serialisation, runtime/type correctness fixes, documentation updates, and dependency maintenance.

🐛 Bug Fixes

  • AxiosError Serialisation: Made AxiosError#cause non-enumerable to prevent circular JSON serialisation failures when errors include nested causes. (#​10913)
  • Node HTTP Adapter: Guarded socket.setKeepAlive for proxy agent streams, accepted path-only URLs when socketPath is configured, deferred environment proxy handling to Node, and explicitly passed maxBodyLength through to follow-redirects. (#​10917, #​10930, #​10942, #​10993)
  • Runtime and Type Correctness: Fixed several runtime crashes, type definition mismatches, and incorrect error handling paths. (#​10959, #​11021)
  • AxiosURLSearchParams: Switched the encoder callback to an arrow function so encoder.call(this) receives the AxiosURLSearchParams instance correctly. (#​11019)

🔧 Maintenance & Chores

🌟 New Contributors

We are thrilled to welcome our new contributors. Thank you for helping improve axios:

Full Changelog

v1.18.0

Compare Source

This release hardens redirect and URL handling, improves the validateStatus configuration semantics, and includes updates to documentation, dependencies, and release metadata.

v1.17.0

Compare Source

This release adds Node HTTP zstd decompression, hardens config and release workflows, and fixes authentication, header, proxy, and type-handling regressions.

v1.16.1

Compare Source

This release ships a defence-in-depth fix for prototype pollution in formDataToJSON, hardens proxy and CI workflows, restores Webpack 4 compatibility for the fetch adapter, and includes several small bug fixes and maintenance improvements.

v1.16.0

Compare Source

This release adds support for the QUERY HTTP method and a new ECONNREFUSED error constant, lands a substantial wave of HTTP, fetch, and XHR adapter bug fixes around redirects, aborts, headers, and timeouts, and welcomes 23 new contributors.

v1.15.2

Compare Source

This release delivers prototype-pollution hardening for the Node HTTP adapter, adds an opt-in allowedSocketPaths allowlist to mitigate SSRF via Unix domain sockets, fixes a keep-alive socket memory leak, and ships supply-chain hardening across CI and security docs.

v1.15.1

Compare Source

This release ships a coordinated set of security hardening fixes across headers, body/redirect limits, multipart handling, and XSRF/prototype-pollution vectors, alongside a broad sweep of bug fixes, test migrations, and threat-model documentation updates.


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@socket-security

socket-security Bot commented May 13, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Addednpm/​axios@​1.18.1100100100100100

View full report

@renovate renovate Bot force-pushed the renovate/axios-1.x-lockfile branch from 119a1b8 to 79f959a Compare May 18, 2026 11:56
@renovate renovate Bot force-pushed the renovate/axios-1.x-lockfile branch 2 times, most recently from c91d594 to 8b7a81e Compare June 3, 2026 11:16
@renovate renovate Bot changed the title chore(deps): update dependency axios to v1.16.1 chore(deps): update dependency axios to v1.17.0 Jun 3, 2026
@renovate renovate Bot force-pushed the renovate/axios-1.x-lockfile branch 2 times, most recently from b1d0981 to a8b848c Compare June 14, 2026 20:35
@renovate renovate Bot changed the title chore(deps): update dependency axios to v1.17.0 chore(deps): update dependency axios to v1.18.0 Jun 14, 2026
@renovate renovate Bot force-pushed the renovate/axios-1.x-lockfile branch from a8b848c to c521bb9 Compare June 22, 2026 19:01
@renovate renovate Bot changed the title chore(deps): update dependency axios to v1.18.0 chore(deps): update dependency axios to v1.18.1 Jun 22, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants