[Snyk] Security upgrade axios from 0.8.1 to 0.28.0

[jwlh]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • weather/package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	676/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.1	Cross-site Request Forgery (CSRF) SNYK-JS-AXIOS-6032459	No	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: axios

The new version differs by 250 commits.

• 3b7635a [Release] v0.28.0 (#6211)
• 27c0076 feat(backport): added ability for paramsSerializer to handle function; (#6227)
• 80c3d74 chore(ci): backported publish action; (#6224)
• 2755df5 fix(security): fixed CVE-2023-45857 by backporting `withXSRFToken` option to v0.x (#6091)
• 880b42e docs: Fix a typo in README
• c4bf0a4 Allow null indexes on formSerializer and paramsSerializer v0.x (#4961)
• 1e2679f fix: [Types] Type of header in AxiosRequestConfig / for Axios.create is incorrect (#4927)
• 80b546c fix: loosing request header (#4858) (#4871)
• 6acb5ef feat: brower platform add data protocol. (#4814)
• bbb2264 fix(typing): axios response headers can be undefined (#4813)
• eff25a2 chore: updated close stale workflow
• 6b44df0 chore: added dependancy review
• 94c1f7d chore: added code QL for the 0.x branch
• 5576c2f chore: update ci runner rules
• 871ef05 Fix - Request ignores false, 0 and empty string as body values (#4786)
• 3dad74c Update base with master (#4754)
• 12103f8 chore: adjusted CI to run on any current and future version branches
• 1504792 Fixing content-type header repeated (#4745)
• a11f950 Fix/4737/timeout error message for http (#4738)
• 9bb016f chore: updated actions to run on new version based branches
• c731be7 chore: removed Travis CI config file as we have moved to GitHub actions
• a02fe28 Updated README.md; (#4742)
• 59dfed6 Bump grunt from 1.5.2 to 1.5.3 (#4743)
• c008e57 Added `axios.formToJSON` method; (#4735)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Request Forgery (CSRF)