From 0378e6b37514e2fb0bfc487759e4bef7c660f56b Mon Sep 17 00:00:00 2001
From: Yen Truong <36055303+yen-tt@users.noreply.github.com>
Date: Tue, 10 Dec 2024 10:33:17 -0500
Subject: [PATCH] Address rollup vulnerabilities (#87)

update rollup version to 3.29.5 (https://github.com/rollup/rollup/releases/tag/v3.29.5) which includes a vulnerability fix

J=VULN-39403,VULN-39404
TEST=manual

built package, smoke test using test-site
---
 package-lock.json           | 8 ++++----
 package.json                | 2 +-
 test-site/package-lock.json | 4 ++--
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 8b0b490..e62c087 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -52,7 +52,7 @@
         "prettier": "^2.8.8",
         "react": "^18.2.0",
         "react-dom": "^18.2.0",
-        "rollup": "^3.28.1",
+        "rollup": "^3.29.5",
         "rollup-plugin-typescript2": "^0.35.0",
         "storybook": "^7.5.2",
         "tailwindcss": "^3.3.2",
@@ -19274,9 +19274,9 @@
       }
     },
     "node_modules/rollup": {
-      "version": "3.28.1",
-      "resolved": "https://registry.npmjs.org/rollup/-/rollup-3.28.1.tgz",
-      "integrity": "sha512-R9OMQmIHJm9znrU3m3cpE8uhN0fGdXiawME7aZIpQqvpS/85+Vt1Hq1/yVIcYfOmaQiHjvXkQAoJukvLpau6Yw==",
+      "version": "3.29.5",
+      "resolved": "https://registry.npmjs.org/rollup/-/rollup-3.29.5.tgz",
+      "integrity": "sha512-GVsDdsbJzzy4S/v3dqWPJ7EfvZJfCHiDqe80IyrF59LYuP+e6U1LJoUqeuqRbwAWoMNoXivMNeNAOf5E22VA1w==",
       "dev": true,
       "bin": {
         "rollup": "dist/bin/rollup"
diff --git a/package.json b/package.json
index bc9ca82..a996ef8 100644
--- a/package.json
+++ b/package.json
@@ -84,7 +84,7 @@
     "prettier": "^2.8.8",
     "react": "^18.2.0",
     "react-dom": "^18.2.0",
-    "rollup": "^3.28.1",
+    "rollup": "^3.29.5",
     "rollup-plugin-typescript2": "^0.35.0",
     "storybook": "^7.5.2",
     "tailwindcss": "^3.3.2",
diff --git a/test-site/package-lock.json b/test-site/package-lock.json
index 82c133d..2c709ad 100644
--- a/test-site/package-lock.json
+++ b/test-site/package-lock.json
@@ -23,7 +23,7 @@
     },
     "..": {
       "name": "@yext/chat-ui-react",
-      "version": "0.11.3",
+      "version": "0.11.4",
       "license": "BSD-3-Clause",
       "dependencies": {
         "react-markdown": "^6.0.3",
@@ -69,7 +69,7 @@
         "prettier": "^2.8.8",
         "react": "^18.2.0",
         "react-dom": "^18.2.0",
-        "rollup": "^3.28.1",
+        "rollup": "^3.29.5",
         "rollup-plugin-typescript2": "^0.35.0",
         "storybook": "^7.5.2",
         "tailwindcss": "^3.3.2",