There are 2 open security issues in buster.
2 issues left for the package maintainer to handle:
Axios NPM package 0.21.0 contains a Server-Side Request Forgery (SSRF) vulnerability where an attacker is able to bypass a proxy by providing a URL that responds with a redirect to a restricted host or IP address.
axios is vulnerable to Inefficient Regular Expression Complexity
You can find information about how to handle these issues in the security team's documentation.