Create a new pull request by comparing changes across two branches

.github/workflows/ci.yml

@@ -20,11 +20,33 @@ jobs:
  steps:
  - uses: actions/checkout@v3
  with:
- persist-credentials: false
+ persist-credentials: true
+ - name: Get changed files
+ id: changed-files
+ uses: tj-actions/changed-files@v40
+ - name: List all changed files
+ run: |
+ for file in ${{ steps.changed-files.outputs.all_changed_files }}; do
+ echo "$file was changed"
+ done
+ - name: Check changes
+ id: changed-ignored
+ uses: tj-actions/changed-files@v40
+ with:
+ files: |
+ **.md
+ sandbox/**
+ examples/**
+ .github/**
+ templates/**
+ bin/**
  - name: Setup node
  uses: actions/setup-node@v3
  with:
  node-version: ${{ matrix.node-version }}
  cache: npm
+ if: steps.changed-ignored.outputs.only_modified == 'false'
  - run: npm ci
+ if: steps.changed-ignored.outputs.only_modified == 'false'
  - run: npm test
+ if: steps.changed-ignored.outputs.only_modified == 'false'

CHANGELOG.md

@@ -1,5 +1,27 @@
 # Changelog
 
+## [1.6.2](https://github.com/axios/axios/compare/v1.6.1...v1.6.2) (2023-11-14)
+
+
+### Features
+
+* **withXSRFToken:** added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ([#6046](https://github.com/axios/axios/issues/6046)) ([cff9967](https://github.com/axios/axios/commit/cff996779b272a5e94c2b52f5503ccf668bc42dc))
+
+### PRs
+- feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old `withCredentials` behavior; ( [#6046](https://api.github.com/repos/axios/axios/pulls/6046) )
+```
+
+📢 This PR added 'withXSRFToken' option as a replacement for old withCredentials behaviour. 
+You should now use withXSRFToken along with withCredential to get the old behavior.
+This functionality is considered as a fix.
+```
+
+### Contributors to this release
+
+- <img src="https://avatars.githubusercontent.com/u/12586868?v&#x3D;4&amp;s&#x3D;18" alt="avatar" width="18"/> [Dmitriy Mozgovoy](https://github.com/DigitalBrainJS "+271/-146 (#6081 #6080 #6079 #6078 #6046 #6064 #6063 )")
+- <img src="https://avatars.githubusercontent.com/u/79681367?v&#x3D;4&amp;s&#x3D;18" alt="avatar" width="18"/> [Ng Choon Khon (CK)](https://github.com/ckng0221 "+4/-4 (#6073 )")
+- <img src="https://avatars.githubusercontent.com/u/9162827?v&#x3D;4&amp;s&#x3D;18" alt="avatar" width="18"/> [Muhammad Noman](https://github.com/mnomanmemon "+2/-2 (#6048 )")
+
 ## [1.6.1](https://github.com/axios/axios/compare/v1.6.0...v1.6.1) (2023-11-08)
 
 
@@ -13,6 +35,15 @@
 - <img src="https://avatars.githubusercontent.com/u/12586868?v&#x3D;4&amp;s&#x3D;18" alt="avatar" width="18"/> [Dmitriy Mozgovoy](https://github.com/DigitalBrainJS "+432/-65 (#6059 #6056 #6055 )")
 - <img src="https://avatars.githubusercontent.com/u/3982806?v&#x3D;4&amp;s&#x3D;18" alt="avatar" width="18"/> [Fabian Meyer](https://github.com/meyfa "+5/-2 (#5835 )")
 
+### PRs
+- feat(withXSRFToken): added withXSRFToken option as a workaround to achieve the old &#x60;withCredentials&#x60; behavior; ( [#6046](https://api.github.com/repos/axios/axios/pulls/6046) )
+```
+
+📢 This PR added &#x27;withXSRFToken&#x27; option as a replacement for old withCredentials behaviour. 
+You should now use withXSRFToken along with withCredential to get the old behavior.
+This functionality is considered as a fix.
+```
+
 # [1.6.0](https://github.com/axios/axios/compare/v1.5.1...v1.6.0) (2023-10-26)
 
 

CONTRIBUTING.md

@@ -20,9 +20,9 @@ Please update the [docs](README.md) accordingly so that there are no discrepanci
 
 ## Developing
 
-- `grunt test` run the jasmine and mocha tests
-- `grunt build` run webpack and bundle the source
-- `grunt version` prepare the code for release
+- `npm run test` run the jasmine and mocha tests
+- `npm run build` run webpack and bundle the source
+- `npm run version` prepare the code for release
 
 Please don't include changes to `dist/` in your pull request. This should only be updated when releasing a new version.
 

README.md

@@ -452,6 +452,9 @@ These are the available config options for making requests. Only the `url` is re
 
  // `xsrfHeaderName` is the name of the http header that carries the xsrf token value
  xsrfHeaderName: 'X-XSRF-TOKEN', // default
+
+ // `undefined` (default) - set XSRF header only for the same origin requests
+ withXSRFToken: boolean | undefined | ((config: InternalAxiosRequestConfig) => boolean | undefined),
 
  // `onUploadProgress` allows handling of progress events for uploads
  // browser & node.js
@@ -543,15 +546,15 @@ These are the available config options for making requests. Only the `url` is re
  // automatically. If set to `true` will also remove the 'content-encoding' header
  // from the responses objects of all decompressed responses
  // - Node only (XHR cannot turn off decompression)
- decompress: true // default
+ decompress: true, // default
 
  // `insecureHTTPParser` boolean.
  // Indicates where to use an insecure HTTP parser that accepts invalid HTTP headers.
  // This may allow interoperability with non-conformant HTTP implementations.
  // Using the insecure parser should be avoided.
  // see options https://nodejs.org/dist/latest-v12.x/docs/api/http.html#http_http_request_url_options_callback
  // see also https://nodejs.org/en/blog/vulnerability/february-2020-security-releases/#strict-http-header-parsing-none
- insecureHTTPParser: undefined // default
+ insecureHTTPParser: undefined, // default
 
  // transitional options for backward compatibility that may be removed in the newer versions
  transitional: {

bower.json

@@ -1,7 +1,7 @@
 {
  "name": "axios",
  "main": "./dist/axios.js",
- "version": "1.6.1",
+ "version": "1.6.2",
  "homepage": "https://axios-http.com",
  "authors": [
  "Matt Zabriskie"