Anyone know if this issue is reported to the Blue Button team and when will this be fixed?
# npm audit report
axios 0.8.1 - 0.27.2
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability -
https://github.com/advisories/GHSA-wf5p-g6vw-rhxxNo fix available
node_modules/cms-bluebutton-sdk/node_modules/axios
cms-bluebutton-sdk *
Depends on vulnerable versions of axios
node_modules/cms-bluebutton-sdk
2 moderate severity vulnerabilities
Some issues need review, and may require choosing
a different dependency.