From afaf86ebcfd3e3c225ee486c3140f5d7c0feacde Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 19 Feb 2025 13:10:24 +0000 Subject: [PATCH] Bump dompurify from 2.5.8 to 3.2.4 Bumps [dompurify](https://github.com/cure53/DOMPurify) from 2.5.8 to 3.2.4. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/2.5.8...3.2.4) --- updated-dependencies: - dependency-name: dompurify dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package-lock.json | 12 ++++++++---- package.json | 2 +- 2 files changed, 9 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index e7272d7c6..858575a91 100644 --- a/package-lock.json +++ b/package-lock.json @@ -37,7 +37,7 @@ "@types/react-dom": "^18.3.0", "base64-js": "^1.5.1", "crelt": "^1.0.5", - "dompurify": "^2.3.3", + "dompurify": "^3.2.4", "file-saver": "^2.0.5", "framer-motion": "^10.2.4", "lodash.debounce": "^4.0.8", @@ -6839,9 +6839,13 @@ "dev": true }, "node_modules/dompurify": { - "version": "2.5.8", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.8.tgz", - "integrity": "sha512-o1vSNgrmYMQObbSSvF/1brBYEQPHhV1+gsmrusO7/GXtp1T9rCS8cXFqVxK/9crT1jA6Ccv+5MTSjBNqr7Sovw==" + "version": "3.2.4", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.2.4.tgz", + "integrity": "sha512-ysFSFEDVduQpyhzAob/kkuJjf5zWkZD8/A9ywSp1byueyuCfHamrCBa14/Oc2iiB0e51B+NpxSl5gmzn+Ms/mg==", + "license": "(MPL-2.0 OR Apache-2.0)", + "optionalDependencies": { + "@types/trusted-types": "^2.0.7" + } }, "node_modules/dot-case": { "version": "3.0.4", diff --git a/package.json b/package.json index 06f60e0cb..725b16f17 100644 --- a/package.json +++ b/package.json @@ -33,7 +33,7 @@ "@types/react-dom": "^18.3.0", "base64-js": "^1.5.1", "crelt": "^1.0.5", - "dompurify": "^2.3.3", + "dompurify": "^3.2.4", "file-saver": "^2.0.5", "framer-motion": "^10.2.4", "lodash.debounce": "^4.0.8",