From be2bd33fa5402b66b66878d96d99774f09fd12e4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 30 Dec 2025 10:32:01 +0000 Subject: [PATCH] fix: upgrade dompurify from 3.2.4 to 3.3.1 Snyk has created this PR to upgrade dompurify from 3.2.4 to 3.3.1. See this package in npm: dompurify See this project in Snyk: https://app.snyk.io/org/karancs06/project/d370d639-a6ed-42ca-813f-246a500b75cb?utm_source=github&utm_medium=referral&page=upgrade-pr --- package-lock.json | 13 +++++++------ package.json | 2 +- 2 files changed, 8 insertions(+), 7 deletions(-) diff --git a/package-lock.json b/package-lock.json index 72ed6f5f..c308f9c1 100644 --- a/package-lock.json +++ b/package-lock.json @@ -15,13 +15,13 @@ "classnames": "^2.5.1", "dayjs": "^1.11.13", "deepsignal": "^1.5.0", - "goober": "^2.1.16", - "dompurify": "^3.2.3", + "dompurify": "^3.3.1", "get-xpath": "^3.2.0", + "goober": "^2.1.16", "lodash-es": "^4.17.21", "mustache": "^4.2.0", "preact": "^10.27.2", - "uuid": "^8.3.2" + "uuid": "^11.0.3" }, "devDependencies": { "@commitlint/cli": "^20.2.0", @@ -3669,9 +3669,10 @@ "dev": true }, "node_modules/dompurify": { - "version": "3.2.4", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.2.4.tgz", - "integrity": "sha512-ysFSFEDVduQpyhzAob/kkuJjf5zWkZD8/A9ywSp1byueyuCfHamrCBa14/Oc2iiB0e51B+NpxSl5gmzn+Ms/mg==", + "version": "3.3.1", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.3.1.tgz", + "integrity": "sha512-qkdCKzLNtrgPFP1Vo+98FRzJnBRGe4ffyCea9IwHB1fyxPOeNTHpLKYGd4Uk9xvNoH0ZoOjwZxNptyMwqrId1Q==", + "license": "(MPL-2.0 OR Apache-2.0)", "optionalDependencies": { "@types/trusted-types": "^2.0.7" } diff --git a/package.json b/package.json index ac957376..b5ea0be0 100644 --- a/package.json +++ b/package.json @@ -92,7 +92,7 @@ "dayjs": "^1.11.13", "deepsignal": "^1.5.0", "goober": "^2.1.16", - "dompurify": "^3.2.3", + "dompurify": "^3.3.1", "get-xpath": "^3.2.0", "lodash-es": "^4.17.21", "mustache": "^4.2.0",