From 3fe3218e734db59428797573a3653af174118239 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 16 Apr 2026 03:39:52 +0000 Subject: [PATCH] Bump dompurify from 3.2.6 to 3.4.0 Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.2.6 to 3.4.0. - [Release notes](https://github.com/cure53/DOMPurify/releases) - [Commits](https://github.com/cure53/DOMPurify/compare/3.2.6...3.4.0) --- updated-dependencies: - dependency-name: dompurify dependency-version: 3.4.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package-lock.json | 8 ++++---- package.json | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) mode change 100755 => 100644 package.json diff --git a/package-lock.json b/package-lock.json index bdd2334a..6a1bb92c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -9,7 +9,7 @@ "version": "1.3.0", "dependencies": { "@uswds/uswds": "3.8.1", - "dompurify": "^3.2.6", + "dompurify": "^3.4.0", "dot-prop": "^5.3.0", "uswds": "~2.11.0" }, @@ -218,9 +218,9 @@ } }, "node_modules/dompurify": { - "version": "3.2.6", - "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.2.6.tgz", - "integrity": "sha512-/2GogDQlohXPZe6D6NOgQvXLPSYBqIWMnZ8zzOhn09REE4eyAzb+Hed3jhoM9OkuaJ8P6ZGTTVWQKAi8ieIzfQ==", + "version": "3.4.0", + "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-3.4.0.tgz", + "integrity": "sha512-nolgK9JcaUXMSmW+j1yaSvaEaoXYHwWyGJlkoCTghc97KgGDDSnpoU/PlEnw63Ah+TGKFOyY+X5LnxaWbCSfXg==", "license": "(MPL-2.0 OR Apache-2.0)", "optionalDependencies": { "@types/trusted-types": "^2.0.7" diff --git a/package.json b/package.json old mode 100755 new mode 100644 index c8ba183d..fdbaecf1 --- a/package.json +++ b/package.json @@ -12,7 +12,7 @@ "@uswds/uswds": "3.8.1", "dot-prop": "^5.3.0", "uswds": "~2.11.0", - "dompurify": "^3.2.6" + "dompurify": "^3.4.0" }, "devDependencies": { "rimraf": "^3.0.2"