From ed4b527b48050213198585935e69164745eb7559 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Apr 2026 13:15:37 -0400 Subject: [PATCH 1/3] chore(deps): bump dompurify from 3.3.3 to 3.4.0 in /src/ui (#285) Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.3.3 to 3.4.0. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.3.3...3.4.0) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- src/ui/package-lock.json | 8 ++++---- src/ui/package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/src/ui/package-lock.json b/src/ui/package-lock.json index b6c5d9a2e..595e7681e 100644 --- a/src/ui/package-lock.json +++ b/src/ui/package-lock.json @@ -37,7 +37,7 @@ "axios": "^1.12.1", "brace-expansion": "^2.0.3", "chart.js": "^4.5.0", - "dompurify": "^3.3.2", + "dompurify": "^3.4.0", "form-data": "^4.0.4", "immer": "^10.1.3", "js-yaml": "^4.1.1", @@ -12108,9 +12108,9 @@ } }, "node_modules/dompurify": { - "version": "3.3.3", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.3.3.tgz", - "integrity": "sha512-Oj6pzI2+RqBfFG+qOaOLbFXLQ90ARpcGG6UePL82bJLtdsa6CYJD7nmiU8MW9nQNOtCHV3lZ/Bzq1X0QYbBZCA==", + "version": "3.4.0", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.4.0.tgz", + "integrity": "sha512-nolgK9JcaUXMSmW+j1yaSvaEaoXYHwWyGJlkoCTghc97KgGDDSnpoU/PlEnw63Ah+TGKFOyY+X5LnxaWbCSfXg==", "license": "(MPL-2.0 OR Apache-2.0)", "optionalDependencies": { "@types/trusted-types": "^2.0.7" diff --git a/src/ui/package.json b/src/ui/package.json index 6c2a577eb..9e107ce50 100644 --- a/src/ui/package.json +++ b/src/ui/package.json @@ -59,7 +59,7 @@ "uuid": "^11.1.0", "vuera": "^0.2.7", "xlsx": "https://cdn.sheetjs.com/xlsx-0.20.2/xlsx-0.20.2.tgz", - "dompurify": "^3.3.2" + "dompurify": "^3.4.0" }, "scripts": { "dev": "vite", From 198a49021c5dff02570ae7ed76f1b61348ae607e Mon Sep 17 00:00:00 2001 From: Bob Strahan Date: Thu, 16 Apr 2026 13:16:22 -0400 Subject: [PATCH 2/3] Revert "chore(deps): bump dompurify from 3.3.3 to 3.4.0 in /src/ui (#285)" (#287) This reverts commit ed4b527b48050213198585935e69164745eb7559. --- src/ui/package-lock.json | 8 ++++---- src/ui/package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/src/ui/package-lock.json b/src/ui/package-lock.json index 595e7681e..b6c5d9a2e 100644 --- a/src/ui/package-lock.json +++ b/src/ui/package-lock.json @@ -37,7 +37,7 @@ "axios": "^1.12.1", "brace-expansion": "^2.0.3", "chart.js": "^4.5.0", - "dompurify": "^3.4.0", + "dompurify": "^3.3.2", "form-data": "^4.0.4", "immer": "^10.1.3", "js-yaml": "^4.1.1", @@ -12108,9 +12108,9 @@ } }, "node_modules/dompurify": { - "version": "3.4.0", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.4.0.tgz", - "integrity": "sha512-nolgK9JcaUXMSmW+j1yaSvaEaoXYHwWyGJlkoCTghc97KgGDDSnpoU/PlEnw63Ah+TGKFOyY+X5LnxaWbCSfXg==", + "version": "3.3.3", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.3.3.tgz", + "integrity": "sha512-Oj6pzI2+RqBfFG+qOaOLbFXLQ90ARpcGG6UePL82bJLtdsa6CYJD7nmiU8MW9nQNOtCHV3lZ/Bzq1X0QYbBZCA==", "license": "(MPL-2.0 OR Apache-2.0)", "optionalDependencies": { "@types/trusted-types": "^2.0.7" diff --git a/src/ui/package.json b/src/ui/package.json index 9e107ce50..6c2a577eb 100644 --- a/src/ui/package.json +++ b/src/ui/package.json @@ -59,7 +59,7 @@ "uuid": "^11.1.0", "vuera": "^0.2.7", "xlsx": "https://cdn.sheetjs.com/xlsx-0.20.2/xlsx-0.20.2.tgz", - "dompurify": "^3.4.0" + "dompurify": "^3.3.2" }, "scripts": { "dev": "vite", From 5decd21968c90dfac859a021378a2f958088a257 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 22 Apr 2026 19:17:11 +0000 Subject: [PATCH 3/3] chore(deps): bump dompurify from 3.3.3 to 3.4.1 in /src/ui Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.3.3 to 3.4.1. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.3.3...3.4.1) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- src/ui/package-lock.json | 8 ++++---- src/ui/package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/src/ui/package-lock.json b/src/ui/package-lock.json index 0c8bd4dc6..a1aefc8c3 100644 --- a/src/ui/package-lock.json +++ b/src/ui/package-lock.json @@ -37,7 +37,7 @@ "axios": "^1.15.0", "brace-expansion": "^2.0.3", "chart.js": "^4.5.0", - "dompurify": "^3.3.2", + "dompurify": "^3.4.1", "form-data": "^4.0.4", "immer": "^10.1.3", "js-yaml": "^4.1.1", @@ -12126,9 +12126,9 @@ } }, "node_modules/dompurify": { - "version": "3.3.3", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.3.3.tgz", - "integrity": "sha512-Oj6pzI2+RqBfFG+qOaOLbFXLQ90ARpcGG6UePL82bJLtdsa6CYJD7nmiU8MW9nQNOtCHV3lZ/Bzq1X0QYbBZCA==", + "version": "3.4.1", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.4.1.tgz", + "integrity": "sha512-JahakDAIg1gyOm7dlgWSDjV4n7Ip2PKR55NIT6jrMfIgLFgWo81vdr1/QGqWtFNRqXP9UV71oVePtjqS2ebnPw==", "license": "(MPL-2.0 OR Apache-2.0)", "optionalDependencies": { "@types/trusted-types": "^2.0.7" diff --git a/src/ui/package.json b/src/ui/package.json index 30c3bbc3e..da3491e68 100644 --- a/src/ui/package.json +++ b/src/ui/package.json @@ -59,7 +59,7 @@ "uuid": "^11.1.0", "vuera": "^0.2.7", "xlsx": "https://cdn.sheetjs.com/xlsx-0.20.2/xlsx-0.20.2.tgz", - "dompurify": "^3.3.2" + "dompurify": "^3.4.1" }, "scripts": { "dev": "vite",