fix: pin axios to 1.13.5 across all packages

[thisisnithin]

Summary

• Pins axios to exact version 1.13.5 in controlplane, playground, and studio (cli was already pinned)
• Removes caret (^) ranges to prevent automatic upgrades to unvetted versions
• Upgrades playground and studio from 1.12.2 to 1.13.5 for consistency

ENG-9319

Test plan

• pnpm install completes successfully
• Verify no regressions in API calls across controlplane, playground, and studio

🤖 Generated with Claude Code

Summary by CodeRabbit

• Chores
  • Updated and standardized the axios HTTP client library dependency across all project packages to a consistent fixed version. Version constraints were adjusted from flexible semantic versioning ranges to exact version pinning, ensuring reproducible build environments and preventing unintended automatic dependency upgrades in future package installations.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: e0f3336c-0fc2-402c-92d9-9b3beb425ae0

📥 Commits

Reviewing files that changed from the base of the PR and between dc4388d and d05bba1.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (3)

• controlplane/package.json
• playground/package.json
• studio/package.json

---

Walkthrough

Axios dependency is pinned to version 1.13.5 across three package.json files (controlplane, playground, studio). The caret dependency specifiers are removed, preventing automatic minor and patch version upgrades.

Changes

Cohort / File(s)	Summary
Axios Version Pinning controlplane/package.json, playground/package.json, studio/package.json	Pinned axios to exact version 1.13.5; removed caret specifiers from controlplane (1.13.5), playground (1.12.2 → 1.13.5), and studio (1.12.2 → 1.13.5) to lock dependency resolution.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related issues

• Pin axios dependency to 1.13.5 #2711: Directly addresses the same objective of pinning axios to 1.13.5 across controlplane, playground, and studio package.json files.

Possibly related PRs

• chore: update axios #2233: Modifies axios dependency entries in the same controlplane, playground, and studio package.json files.
• feat: make dependency versions be fixed #2357: Applies the same pattern of converting dependency ranges to exact version pins across multiple dependencies.
• chore: upgrade axios and openai #2139: Updates axios dependencies in the same three package.json files (controlplane, playground, studio).

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly and accurately describes the main change: pinning axios to version 1.13.5 across multiple packages in the repository.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 46.92%. Comparing base (dc4388d) to head (d05bba1).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2713      +/-   ##
==========================================
+ Coverage   45.67%   46.92%   +1.25%     
==========================================
  Files        1032     1052      +20     
  Lines      138877   143322    +4445     
  Branches     8628     9612     +984     
==========================================
+ Hits        63432    67260    +3828     
- Misses      73719    74316     +597     
- Partials     1726     1746      +20     

see 23 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

Router-nonroot image scan passed

✅ No security vulnerabilities found in image:

ghcr.io/wundergraph/cosmo/router:sha-0fbcb7db02da4bd4efa5b4ebbac8432eb26aa42f-nonroot

[Aenimus]

LGTM!