From 0e1b5a54d27b82b1cab86831b264daf998bcaf9b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Apr 2026 04:16:41 +0000 Subject: [PATCH] build(deps): bump dompurify from 3.3.1 to 3.4.0 Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.3.1 to 3.4.0. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.3.1...3.4.0) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/package-lock.json b/package-lock.json index 4fbd118..0ffd874 100644 --- a/package-lock.json +++ b/package-lock.json @@ -13,7 +13,7 @@ "@primer/css": "~21", "@primer/view-components": "^0.48.0", "autoprefixer": "^10.4.23", - "dompurify": "^3.3.1", + "dompurify": "^3.4.0", "jquery": "^3.7.1", "littlefoot": "^4.1.3", "magnific-popup": "^1.2.0", @@ -731,9 +731,9 @@ } }, "node_modules/dompurify": { - "version": "3.3.1", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.3.1.tgz", - "integrity": "sha512-qkdCKzLNtrgPFP1Vo+98FRzJnBRGe4ffyCea9IwHB1fyxPOeNTHpLKYGd4Uk9xvNoH0ZoOjwZxNptyMwqrId1Q==", + "version": "3.4.0", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.4.0.tgz", + "integrity": "sha512-nolgK9JcaUXMSmW+j1yaSvaEaoXYHwWyGJlkoCTghc97KgGDDSnpoU/PlEnw63Ah+TGKFOyY+X5LnxaWbCSfXg==", "license": "(MPL-2.0 OR Apache-2.0)", "optionalDependencies": { "@types/trusted-types": "^2.0.7" diff --git a/package.json b/package.json index 8a4a0e4..fd2d645 100644 --- a/package.json +++ b/package.json @@ -9,7 +9,7 @@ "@primer/css": "~21", "@primer/view-components": "^0.48.0", "autoprefixer": "^10.4.23", - "dompurify": "^3.3.1", + "dompurify": "^3.4.0", "jquery": "^3.7.1", "littlefoot": "^4.1.3", "magnific-popup": "^1.2.0",