chore: update changelog and packages

[jasonsaayman]

Summary by cubic

Updates the changelog to v1.15.2 and refreshes dependencies in the root, docs, and ESM test fixtures to align with the release. No runtime/source code changes; maintenance only.

Description

• Summary of changes

  • Added v1.15.2 notes to CHANGELOG (security hardening, allowedSocketPaths, keep‑alive leak fix).
  • Bumped follow-redirects to ^1.16.0; updated dev tools (vitest 4.1.5, @vitest/browser 4.1.5, eslint 10.2.1, playwright 1.59.1, prettier 3.8.3, rollup 4.60.2, @babel/preset-env 7.29.2, formidable 3.5.4).
  • Removed unused dev dependencies.
  • Updated docs site deps to axios ^1.15.2 and raised esbuild override to ^0.25.12.
  • Synced ESM test fixtures (vitest 4.1.5, @types/node ^20.19.39); refreshed lockfiles.

• Reasoning

  • Align repository and docs with the v1.15.2 release and keep the toolchain current.

• Additional context

  • Large lockfile diffs are from a full install/refresh.
  • No changes to runtime/source code.

Docs

• Update installation snippets to axios ^1.15.2.
• Add a short note documenting allowedSocketPaths in Node adapter examples.
• Link to v1.15.2 security notes on the release/changelog page.

Testing

• No new tests added.
• Test fixtures updated to vitest 4.1.5; existing suites should continue to pass.
• No additional tests needed for this maintenance PR.

Semantic version impact

• Patch: dependency updates and documentation/changelog only; no API changes.

^{Written for commit 14144d0. Summary will update on new commits.}

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​vitest/​browser@​4.1.3 ⏵ 4.1.5			+1	-1
	@​types/​node@​20.19.37 ⏵ 20.19.39	+1		+1
	globals@​17.4.0 ⏵ 17.5.0	+1		+1
	@​vitest/​browser-playwright@​4.1.3 ⏵ 4.1.5				+1
	rollup@​4.60.2
	eslint@​10.2.0 ⏵ 10.2.1	+1			+2
	prettier@​3.8.1 ⏵ 3.8.3			+1
	axios@​1.15.0 ⏵ 1.15.2	+9
	vitest@​4.1.1 ⏵ 4.1.5	+5		+22	+3

View full report

[cubic-dev-ai]

1 issue found across 9 files

Confidence score: 5/5

• This looks low risk to merge: the only reported issue is a documentation-only typo in CHANGELOG.md, not application logic or runtime behavior.
• The most severe issue is a stale version string (v1.15.1 instead of v1.15.2) in release notes, so the impact is limited to release-note accuracy.
• Pay close attention to CHANGELOG.md - correct the stale version reference in the changelog maintenance bullet.

Prompt for AI agents (unresolved issues)

Check if these issues are valid — if so, understand the root cause of each and fix them. If appropriate, use sub-agents to investigate and fix each issue separately.


<file name="CHANGELOG.md">

<violation number="1" location="CHANGELOG.md:23">
P3: The v1.15.2 release notes contain a stale version reference (`v1.15.1`) in the changelog maintenance bullet.</violation>
</file>

_{Reply with feedback, questions, or to request a fix. Tag @cubic-dev-ai to re-run a review.}

[cubic-dev-ai]

P3: The v1.15.2 release notes contain a stale version reference (v1.15.1) in the changelog maintenance bullet.

Prompt for AI agents

Check if this issue is valid — if so, understand the root cause and fix it. At CHANGELOG.md, line 23:

<comment>The v1.15.2 release notes contain a stale version reference (`v1.15.1`) in the changelog maintenance bullet.</comment>

<file context>
@@ -1,6 +1,32 @@
+
+## 🔧 Maintenance & Chores
+
+- **Changelog:** Updated `CHANGELOG.md` with v1.15.1 release notes. (**#10781**)
+
+[Full Changelog](https://github.com/axios/axios/compare/v1.15.1...v1.15.2)
</file context>

Suggested change

	- **Changelog:** Updated `CHANGELOG.md` with v1.15.1 release notes. (**#10781**)
	- **Changelog:** Updated `CHANGELOG.md` with v1.15.2 release notes. (**#10781**)

[jimthedev]

Did this actually go out? Not seeing the follow-redirects update on npm.

edit: nevermind, I was just on an old version