From 2efa4f2ac7e3c635f13a7649c9b17f61e6a65e95 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Apr 2026 03:23:58 +0000 Subject: [PATCH] Bump dompurify from 3.2.1 to 3.4.0 in /lib/openapi-viewer Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.2.1 to 3.4.0. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.2.1...3.4.0) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- lib/openapi-viewer/package.json | 2 +- lib/openapi-viewer/yarn.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/lib/openapi-viewer/package.json b/lib/openapi-viewer/package.json index 57ee799fb5..be47b2e570 100644 --- a/lib/openapi-viewer/package.json +++ b/lib/openapi-viewer/package.json @@ -13,7 +13,7 @@ "@vue/babel-plugin-jsx": "^1.1.1", "chartjs-adapter-moment": "^1.0.1", "codemirror": "^5.49.2", - "dompurify": "^3.2.1", + "dompurify": "^3.4.0", "marked": "^15.0.2", "moment": "^2.30.1", "vue": "^3.2.41", diff --git a/lib/openapi-viewer/yarn.lock b/lib/openapi-viewer/yarn.lock index a807508ccf..6a27488904 100644 --- a/lib/openapi-viewer/yarn.lock +++ b/lib/openapi-viewer/yarn.lock @@ -2695,10 +2695,10 @@ domhandler@^4.0.0, domhandler@^4.2.0, domhandler@^4.3.1: dependencies: domelementtype "^2.2.0" -dompurify@^3.2.1: - version "3.2.1" - resolved "https://registry.npmjs.org/dompurify/-/dompurify-3.2.1.tgz" - integrity sha512-NBHEsc0/kzRYQd+AY6HR6B/IgsqzBABrqJbpCDQII/OK6h7B7LXzweZTDsqSW2LkTRpoxf18YUP+YjGySk6B3w== +dompurify@^3.4.0: + version "3.4.0" + resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-3.4.0.tgz#b1fc33ebdadb373241621e0a30e4ad81573dfd0b" + integrity sha512-nolgK9JcaUXMSmW+j1yaSvaEaoXYHwWyGJlkoCTghc97KgGDDSnpoU/PlEnw63Ah+TGKFOyY+X5LnxaWbCSfXg== optionalDependencies: "@types/trusted-types" "^2.0.7"