From 2455b071b3d01609ab9090260c74e8c341f66d4a Mon Sep 17 00:00:00 2001
From: Jonathan Norris <jonathan.norris@dynatrace.com>
Date: Mon, 30 Mar 2026 23:24:21 -0400
Subject: [PATCH 1/2] chore: pin axios to 1.13.6 to avoid supply chain attack
 in 1.14.1

---
 package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/package.json b/package.json
index aa15f3a0..3b728354 100644
--- a/package.json
+++ b/package.json
@@ -51,7 +51,7 @@
         "@types/js-yaml": "^4.0.9",
         "@types/validator": "^13.12.2",
         "@zodios/core": "^10.9.6",
-        "axios": "~1.13.6",
+        "axios": "1.13.6",
         "chalk": "^4.1.2",
         "class-transformer": "^0.5.1",
         "class-validator": "^0.14.2",

From 5c01ae1fe52ca7d10e0aef90994920f312f03ded Mon Sep 17 00:00:00 2001
From: Jonathan Norris <jonathan.norris@dynatrace.com>
Date: Mon, 30 Mar 2026 23:26:26 -0400
Subject: [PATCH 2/2] chore: update yarn.lock with pinned axios 1.13.6

---
 yarn.lock | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/yarn.lock b/yarn.lock
index 767ee864..b0c7e1c4 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -388,7 +388,7 @@ __metadata:
     ajv: "npm:^8.18.0"
     ajv-cli: "npm:^5.0.0"
     ajv-formats: "npm:^3.0.1"
-    axios: "npm:~1.13.6"
+    axios: "npm:1.13.6"
     chalk: "npm:^4.1.2"
     class-transformer: "npm:^0.5.1"
     class-validator: "npm:^0.14.2"
@@ -3127,7 +3127,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"axios@npm:1.13.6, axios@npm:~1.13.6":
+"axios@npm:1.13.6":
   version: 1.13.6
   resolution: "axios@npm:1.13.6"
   dependencies: