From f5d8b17c940e90b59df7d7ba71133fd0d715a55c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 4 Jan 2024 11:29:20 +0000 Subject: [PATCH] Bump dompurify from 2.4.5 to 3.0.7 in /frontend Bumps [dompurify](https://github.com/cure53/DOMPurify) from 2.4.5 to 3.0.7. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/2.4.5...3.0.7) --- updated-dependencies: - dependency-name: dompurify dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- frontend/package.json | 2 +- frontend/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/frontend/package.json b/frontend/package.json index 9e508a8b52..2f69ebb25f 100644 --- a/frontend/package.json +++ b/frontend/package.json @@ -32,7 +32,7 @@ "chart.js": "^3.7.1", "chartjs-adapter-date-fns": "^3.0.0", "date-fns": "^2.30.0", - "dompurify": "^2.4.5", + "dompurify": "^3.0.7", "downshift-hooks": "^0.8.1", "final-form": "^4.20.9", "fromentries": "^1.3.2", diff --git a/frontend/yarn.lock b/frontend/yarn.lock index e7bf3f61e5..8739bd1ebd 100644 --- a/frontend/yarn.lock +++ b/frontend/yarn.lock @@ -6777,10 +6777,10 @@ domhandler@^4.0.0, domhandler@^4.2.0, domhandler@^4.3.1: dependencies: domelementtype "^2.2.0" -dompurify@^2.4.5: - version "2.4.5" - resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.4.5.tgz#0e89a27601f0bad978f9a924e7a05d5d2cccdd87" - integrity sha512-jggCCd+8Iqp4Tsz0nIvpcb22InKEBrGz5dw3EQJMs8HPJDsKbFIO3STYtAvCfDx26Muevn1MHVI0XxjgFfmiSA== +dompurify@^3.0.7: + version "3.0.7" + resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-3.0.7.tgz#de8cab085ec28388b95ebf588244ab5f28096e1a" + integrity sha512-BViYTZoqP3ak/ULKOc101y+CtHDUvBsVgSxIF1ku0HmK6BRf+C03MC+tArMvOPtVtZp83DDh5puywKDu4sbVjQ== domutils@1.3: version "1.3.0"