From 8c580a8766d3474fd5087b454281940814c5d17d Mon Sep 17 00:00:00 2001
From: Terry Mun <terry.mun@lego.com>
Date: Fri, 12 Sep 2025 09:58:18 +0200
Subject: [PATCH] chore: upgrade axios to 1.12.0 to address CVE-2025-58754

---
 package-lock.json | 6 ++++--
 package.json      | 2 +-
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 52af398b..0ce039eb 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -10,7 +10,7 @@
       "license": "MIT",
       "dependencies": {
         "assert": "^2.1.0",
-        "axios": "^1.11.0",
+        "axios": "^1.12.0",
         "buffer": "^6.0.3",
         "form-data": "^4.0.4",
         "husky": "^9.1.7",
@@ -3747,7 +3747,9 @@
       }
     },
     "node_modules/axios": {
-      "version": "1.11.0",
+      "version": "1.12.0",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-1.12.0.tgz",
+      "integrity": "sha512-oXTDccv8PcfjZmPGlWsPSwtOJCZ/b6W5jAMCNcfwJbCzDckwG0jrYJFaWH1yvivfCXjVzV/SPDEhMB3Q+DSurg==",
       "license": "MIT",
       "dependencies": {
         "follow-redirects": "^1.15.6",
diff --git a/package.json b/package.json
index 2e6cb22f..2c4a7e43 100644
--- a/package.json
+++ b/package.json
@@ -53,7 +53,7 @@
   "license": "MIT",
   "dependencies": {
     "assert": "^2.1.0",
-    "axios": "^1.11.0",
+    "axios": "^1.12.0",
     "buffer": "^6.0.3",
     "form-data": "^4.0.4",
     "husky": "^9.1.7",