Update axios to latest 0.26.1

[msrivastav13]

Description

axios is being used today in bolt-js for @slack/web-api and @slack/bolt packages. There is a vulnerability detected documented at GHSA-pw2r-vq6v-hr8c. This is due to a package follow-redirects.

This is a medium vulnerability and hence please update the axios dependency to at-least 0.26.0 that solves this. Check the release tag here

What type of issue is this? (place an x in one of the [ ])

• [x ] bug
• enhancement (feature request)
• question
• documentation related
• example code related
• testing related
• discussion

Requirements (place an x in each of the [ ])

• [ x] I've read and understood the Contributing guidelines and have done my best effort to follow them.
• [ x] I've read and agree to the Code of Conduct.
• [ x] I've searched for any related issues and avoided creating a duplicate issue.

---

Bug Report

This is a security issue of type moderate risk. More details about the risk here.

Reproducible in:

package version:

node version:

OS version(s):

Steps to reproduce:

Expected result:

What you expected to happen

Actual result:

What actually happened

Attachments:

Logs, screenshots, screencast, sample project, funny gif, etc.

[seratch]

Hi @msrivastav13, thanks for reporting this issue! I just submitted a pull request fixing this: #1366 The next release will rely on only 0.26.1 or newer version of axios.