fix(security): upgrade axios to fix CVE

Co-authored-by: Cursor <cursoragent@cursor.com>

apps/web/package.json

@@ -65,7 +65,7 @@
     "@tanstack/react-query": "^5.17.0",
     "@tanstack/react-virtual": "^3.13.12",
     "@types/dompurify": "^3.0.5",
-    "axios": "^1.6.7",
+    "axios": "^1.13.5",
     "clsx": "^2.1.0",
     "date-fns": "^4.1.0",
     "dompurify": "^3.3.0",

package-lock.json

@@ -36,7 +36,7 @@
         "@tanstack/react-query": "^5.17.0",
         "@tanstack/react-virtual": "^3.13.12",
         "@types/dompurify": "^3.0.5",
-        "axios": "^1.6.7",
+        "axios": "^1.13.5",
         "clsx": "^2.1.0",
         "date-fns": "^4.1.0",
         "dompurify": "^3.3.0",
@@ -251,6 +251,17 @@
         "undici-types": "~6.21.0"
       }
     },
+    "apps/web/node_modules/axios": {
+      "version": "1.13.5",
+      "resolved": "https://registry.npmjs.org/axios/-/axios-1.13.5.tgz",
+      "integrity": "sha512-cz4ur7Vb0xS4/KUN0tPWe44eqxrIu31me+fbang3ijiNscE129POzipJJA6zniq2C/Z6sJCjMimjS8Lc/GAs8Q==",
+      "license": "MIT",
+      "dependencies": {
+        "follow-redirects": "^1.15.11",
+        "form-data": "^4.0.5",
+        "proxy-from-env": "^1.1.0"
+      }
+    },
     "apps/web/node_modules/brace-expansion": {
       "version": "2.0.2",
       "resolved": "https://registry.npmjs.org/brace-expansion/-/brace-expansion-2.0.2.tgz",