From 001910be1d77e716cef43b30d38e818af149db69 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 17 Jun 2026 03:31:46 +0000 Subject: [PATCH] Bump dompurify from 3.3.2 to 3.4.9 Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.3.2 to 3.4.9. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.3.2...3.4.9) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.9 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package-lock.json | 11 ++++------- package.json | 2 +- 2 files changed, 5 insertions(+), 8 deletions(-) diff --git a/package-lock.json b/package-lock.json index a036a1b11..f112cf960 100644 --- a/package-lock.json +++ b/package-lock.json @@ -15,7 +15,7 @@ "@types/react": "^19.2.10", "@types/react-dom": "^19.2.3", "clsx": "^2.1.1", - "dompurify": "^3.3.2", + "dompurify": "^3.4.9", "highlight.js": "^11.11.1", "hugo-extended": "^0.157.0", "lucide-react": "^0.563.0", @@ -3395,13 +3395,10 @@ } }, "node_modules/dompurify": { - "version": "3.3.2", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.3.2.tgz", - "integrity": "sha512-6obghkliLdmKa56xdbLOpUZ43pAR6xFy1uOrxBaIDjT+yaRuuybLjGS9eVBoSR/UPU5fq3OXClEHLJNGvbxKpQ==", + "version": "3.4.9", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.4.9.tgz", + "integrity": "sha512-4dPSRMRDqHvs0V4YDFCsaIZo4if5u0xM+llyxiM2fwuZFdKArUBAF3VtI2+n8NKg9P870WMdYk0UhqQNoWXbfQ==", "license": "(MPL-2.0 OR Apache-2.0)", - "engines": { - "node": ">=20" - }, "optionalDependencies": { "@types/trusted-types": "^2.0.7" } diff --git a/package.json b/package.json index b5c1337e3..52873c999 100644 --- a/package.json +++ b/package.json @@ -41,7 +41,7 @@ "@types/react": "^19.2.10", "@types/react-dom": "^19.2.3", "clsx": "^2.1.1", - "dompurify": "^3.3.2", + "dompurify": "^3.4.9", "highlight.js": "^11.11.1", "hugo-extended": "^0.157.0", "lucide-react": "^0.563.0",