fix: pin axios to 1.13.2 to prevent upgrade to compromised versions

[priyanshu6238]

Summary

Test Plan

Summary by CodeRabbit

• Chores
  • Updated dependency version specification to ensure consistent package resolution.

[coderabbitai]

Walkthrough

The pull request modifies the package.json file, changing the axios dependency version specification from a caret-pinned range (^1.13.2) to an exact version pin (1.13.2). This constrains npm/yarn to install precisely version 1.13.2 instead of allowing minor or patch version upgrades within the range. No other dependencies, scripts, or configuration values were altered.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Poem

🐰 A rabbit hops through version land,
Where caret signs were once so grand,
But now we pin with steady care—
One-dot-three-dot-two, declared with flair! 📌

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The title mentions pinning axios to prevent upgrades to compromised versions, but the actual change simply removes the caret operator (^) from the version spec without addressing security vulnerabilities.	Update the title to accurately describe the change: 'fix: pin axios to exact version 1.13.2' or clarify in the PR description why this specific version prevents compromised upgrades.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch fix/axois_version

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

🚀 Deployed on https://deploy-preview-3864--glific-frontend.netlify.app

[codacy-production]

Not up to standards ⛔

🔴 Issues 1 high

Alerts:
⚠ 1 issue (≤ 0 issues of at least minor severity)

Results:
1 new issue

Category	Results
Security	1 high

View in Codacy

🟢 Metrics 0 complexity

Metric	Results
Complexity	0

View in Codacy

_{TIP This summary will be updated as you push new changes. Give us feedback}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 81.88%. Comparing base (c56b13f) to head (1af90d8).

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #3864   +/-   ##
=======================================
  Coverage   81.88%   81.88%           
=======================================
  Files         308      308           
  Lines       12940    12940           
  Branches     2978     2978           
=======================================
  Hits        10596    10596           
  Misses       1409     1409           
  Partials      935      935           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[cypress]

Glific    Run #8084

Run Properties:   Failed #8084  •  00aad3933a ℹ️: Merge 1af90d876e5505b97d6d34773c003f53cdeeb490 into c56b13f7ed7fa1dbac09a9b51dc9...

Project	Glific
Branch Review	fix/axois_version
Run status	Failed #8084
Run duration	13m 05s
Commit	00aad3933a ℹ️: Merge 1af90d876e5505b97d6d34773c003f53cdeeb490 into c56b13f7ed7fa1dbac09a9b51dc9...
Committer	Priyanshu singh
View all properties for this run ↗︎

---

Test results
Failures	1
Flaky	1
Pending	0
Skipped	0
Passing	97
View all changes introduced in this branch ↗︎

---

Tests for review

  cypress/e2e/filesearch/Filesearch.spec.ts • 1 failed test

View Output

Test		Artifacts
File search > should create a new assistant with file upload		Test Replay Screenshots

  cypress/e2e/chat/ChatCollection.spec.ts • 1 flaky test

View Output

Test		Artifacts
ChatCollection > should send the emoji to collection		Test Replay Screenshots

[rvignesh89]

Don't think we need to pin to exact version since the vulnerable packages have been removed from npmjs