From f4026e4e7dadf35d1111d7abe132371755b231e3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 8 Jun 2022 23:38:08 +0000 Subject: [PATCH] fix: package.json & package-lock.json to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-DOMPURIFY-2863266 --- package-lock.json | 6 +++--- package.json | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 46112b5f9d92..e3b2711987e7 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10613,9 +10613,9 @@ } }, "dompurify": { - "version": "2.0.7", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.0.7.tgz", - "integrity": "sha512-S3O0lk6rFJtO01ZTzMollCOGg+WAtCwS3U5E2WSDY/x/sy7q70RjEC4Dmrih5/UqzLLB9XoKJ8KqwBxaNvBu4A==" + "version": "2.2.3", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.2.3.tgz", + "integrity": "sha512-8Hv7Q0FuwD9rWoB6qI2eZsfKbGXfoUVuGHHrE15vgk4ReOKwOkSgbqb2OMFtc0d5besOEkoLkcyuV10zQ2X5gw==" }, "domutils": { "version": "1.7.0", diff --git a/package.json b/package.json index 6dde3eb66c88..f7fede2896ec 100644 --- a/package.json +++ b/package.json @@ -18,7 +18,7 @@ "@ampproject/toolbox-cache-url": "2.5.4", "@ampproject/viewer-messaging": "1.1.0", "@ampproject/worker-dom": "0.27.4", - "dompurify": "2.0.7", + "dompurify": "2.2.3", "intersection-observer": "0.11.0", "jss": "10.3.0", "jss-preset-default": "10.4.0",