From 49422b2895b9239c471bcdc1904c225bf7749f93 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 18 Sep 2024 01:10:32 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DOMPURIFY-7984421
---
 package-lock.json | 15 ++++++++-------
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index f280025a..4c11d217 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -17,7 +17,7 @@
         "adaptivecards": "^2.10.0",
         "axios": "1.7.4",
         "cypress-real-events": "^1.7.0",
-        "dompurify": "2.4.9",
+        "dompurify": "^2.5.4",
         "flatpickr": "4.6.3",
         "immutable": "^4.0.0-rc.12",
         "lodash": "^4.17.21",
@@ -5452,9 +5452,10 @@
       "dev": true
     },
     "node_modules/dompurify": {
-      "version": "2.4.9",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.4.9.tgz",
-      "integrity": "sha512-iHtnxYMotKgOTvxIqq677JsKHvCOkAFqj9x8Mek2zdeHW1XjuFKwjpmZeMaXQRQ8AbJZDbcRz/+r1QhwvFtmQg=="
+      "version": "2.5.4",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.4.tgz",
+      "integrity": "sha512-l5NNozANzaLPPe0XaAwvg3uZcHtDBnziX/HjsY1UcDj1MxTK8Dd0Kv096jyPK5HRzs/XM5IMj20dW8Fk+HnbUA==",
+      "license": "(MPL-2.0 OR Apache-2.0)"
     },
     "node_modules/domutils": {
       "version": "1.7.0",
@@ -17416,9 +17417,9 @@
       "dev": true
     },
     "dompurify": {
-      "version": "2.4.9",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.4.9.tgz",
-      "integrity": "sha512-iHtnxYMotKgOTvxIqq677JsKHvCOkAFqj9x8Mek2zdeHW1XjuFKwjpmZeMaXQRQ8AbJZDbcRz/+r1QhwvFtmQg=="
+      "version": "2.5.4",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.4.tgz",
+      "integrity": "sha512-l5NNozANzaLPPe0XaAwvg3uZcHtDBnziX/HjsY1UcDj1MxTK8Dd0Kv096jyPK5HRzs/XM5IMj20dW8Fk+HnbUA=="
     },
     "domutils": {
       "version": "1.7.0",
diff --git a/package.json b/package.json
index 4777b021..92245bd5 100644
--- a/package.json
+++ b/package.json
@@ -52,7 +52,7 @@
     "adaptivecards": "^2.10.0",
     "axios": "1.7.4",
     "cypress-real-events": "^1.7.0",
-    "dompurify": "2.4.9",
+    "dompurify": "2.5.4",
     "flatpickr": "4.6.3",
     "immutable": "^4.0.0-rc.12",
     "lodash": "^4.17.21",