optimize: upgrade axios to 1.12.2 by jihun4452 · Pull Request #7699 · apache/incubator-seata (original) (raw)

Ⅰ. Describe what this PR did

This PR upgrades axios in the console frontend to version ^1.12.2 (and updates the lockfile to 1.12.2) to address the security vulnerability CVE-2025-58754.

Ⅱ. Does this pull request fix one issue?

fixes #7659

Ⅲ. Why don't you add test cases (unit test/integration test)?

No behavioral change was introduced—only a dependency version bump—so no new tests are required.

Ⅳ. Describe how to verify it

1. Run npm ls axios → should output axios@1.12.2
2. Confirm package.json contains "axios": "^1.12.2"
3. Confirm package-lock.json shows axios 1.12.2
4. (optional) Run npm run build to ensure the console frontend builds successfully.

Ⅴ. Special notes for reviews

• Scope strictly limited to axios dependency update.
• No source-code or behavioral changes.
• Maintains backward compatibility and aligns with Apache Seata’s security policy.