guptas6est 8c9b080499 fix: update axios to 1.13.5+ to remediate CVE-2026-25639 DoS vulnerability (#13380) ...

### What problem does this PR solve?

This PR remediates CVE-2026-25639, a HIGH severity Denial of Service
vulnerability in axios caused by __proto__ pollution in the mergeConfig
function. The vulnerability affects both the web frontend and the
sandbox nodejs environment.

Trivy security scan identified axios versions below 1.13.5 as
vulnerable. This PR updates axios to secure versions (1.13.6 in web,
1.13.5 in sandbox) to eliminate the security risk.

### Type of change

- [x] Bug Fix (non-breaking change which fixes an issue)

2026-03-05 17:26:04 +08:00

..

component

feat: Add PDF parser selection to Agent Begin and Await Response comp… (#13325)

2026-03-04 11:09:33 +08:00

plugin

Refa: Clean the folders. (#12890)

2026-01-29 14:23:26 +08:00

sandbox

fix: update axios to 1.13.5+ to remediate CVE-2026-25639 DoS vulnerability (#13380)

2026-03-05 17:26:04 +08:00

templates

Refact: Updated Agent template description. (#12995)

2026-02-05 09:50:44 +08:00

test

Update default prompt (#11984)

2025-12-17 12:57:24 +08:00

tools

Feat: support AWS SES smtp (#13195)

2026-02-26 13:49:53 +08:00

__init__.py

Fix error and format issue (#11975)

2025-12-16 19:29:37 +08:00

canvas.py

feat: Add PDF parser selection to Agent Begin and Await Response comp… (#13325)

2026-03-04 11:09:33 +08:00

settings.py

Update comments (#4569)

2025-01-21 20:52:28 +08:00