Skip to content

Commit

Permalink
Update to dompurify 2.5.7
Browse files Browse the repository at this point in the history 
This fixes CVE-2024-47875O,
CVE-2024-45801O, and a few
other security vulnerabilities.
  • Loading branch information
@pjonsson
pjonsson committed Nov 22, 2024
1 parent 91466b0 commit 2076977
Show file tree
Hide file tree
Showing 3 changed files with 6 additions and 5 deletions.
1 change: 1 addition & 0 deletions CHANGES.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@

#### next release (8.7.10)

- Update to dompurify 2.5.7 to fix security vulnerabilities.
- [The next improvement]

#### 8.7.9 - 2024-11-22
Expand Down
2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -110,7 +110,7 @@
"d3-transition": "^3.0.1",
"d3-zoom": "^3.0.0",
"dateformat": "^3.0.3",
"dompurify": "^2.3.3",
"dompurify": "^2.5.7",
"fetch-mock": "^9.11.0",
"file-loader": "^3.0.1",
"file-saver": "^1.3.8",
Expand Down
8 changes: 4 additions & 4 deletions yarn.lock
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5127,10 +5127,10 @@ domhandler@^4.0, domhandler@^4.2.0, domhandler@^4.2.2:
dependencies:
domelementtype "^2.2.0"

dompurify@^2.3.3:
version "2.3.5"
resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.3.5.tgz#c83ed5a3ae5ce23e52efe654ea052ffb358dd7e3"
integrity sha512-kD+f8qEaa42+mjdOpKeztu9Mfx5bv9gVLO6K9jRx4uGvh6Wv06Srn4jr1wPNY2OOUGGSKHNFN+A8MA3v0E0QAQ==
dompurify@^2.5.7:
version "2.5.7"
resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.5.7.tgz#6e0d36b9177db5a99f18ade1f28579db5ab839d7"
integrity sha512-2q4bEI+coQM8f5ez7kt2xclg1XsecaV9ASJk/54vwlfRRNQfDqJz2pzQ8t0Ix/ToBpXlVjrRIx7pFC/o8itG2Q==

dompurify@^3.0.2:
version "3.0.8"
Expand Down

0 comments on commit 2076977

Please sign in to comment.