From f0987290ca1d4a5ba0a39597af2d93b2c2460e63 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 22 Apr 2026 18:31:01 +0000 Subject: [PATCH] Bump dompurify from 3.2.6 to 3.4.0 in /client Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.2.6 to 3.4.0. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.2.6...3.4.0) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] --- client/package.json | 2 +- client/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/client/package.json b/client/package.json index 4bfee91..2316d4d 100644 --- a/client/package.json +++ b/client/package.json @@ -14,7 +14,7 @@ "@testing-library/react": "^16.3.0", "@testing-library/user-event": "^14.6.1", "core-js": "^3.45.0", - "dompurify": "^3.2.6", + "dompurify": "^3.4.0", "es6-promise": "^4.2.8", "handlebars": "^4.7.8", "highcharts": "^11.4.3", diff --git a/client/yarn.lock b/client/yarn.lock index 9c1c82c..135ead7 100644 --- a/client/yarn.lock +++ b/client/yarn.lock @@ -4386,10 +4386,10 @@ domhandler@^4.0.0, domhandler@^4.2.0, domhandler@^4.3.1: dependencies: domelementtype "^2.2.0" -dompurify@^3.2.6: - version "3.2.6" - resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-3.2.6.tgz#ca040a6ad2b88e2a92dc45f38c79f84a714a1cad" - integrity sha512-/2GogDQlohXPZe6D6NOgQvXLPSYBqIWMnZ8zzOhn09REE4eyAzb+Hed3jhoM9OkuaJ8P6ZGTTVWQKAi8ieIzfQ== +dompurify@^3.2.6, dompurify@^3.4.0: + version "3.4.0" + resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-3.4.0.tgz#b1fc33ebdadb373241621e0a30e4ad81573dfd0b" + integrity sha512-nolgK9JcaUXMSmW+j1yaSvaEaoXYHwWyGJlkoCTghc97KgGDDSnpoU/PlEnw63Ah+TGKFOyY+X5LnxaWbCSfXg== optionalDependencies: "@types/trusted-types" "^2.0.7"