chore(deps): bump dompurify from 3.2.3 to 3.2.4 in /superset-frontend (#32270)

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Stability: no breaking change as described 3.2.4's GH release Functionality: fixes Moderate GHSA-vhxf-7vqr-mrjg (CVE-2025-26791)
2026-04-19 08:04:53 +00:00 · 2025-02-16 14:42:22 +07:00
parent 460aec7bc9
commit 321d105c42
2 changed files with 9 additions and 9 deletions
--- a/superset-frontend/package-lock.json
+++ b/superset-frontend/package-lock.json
@@ -20673,13 +20673,6 @@
        "url": "https://github.com/fb55/domhandler?sponsor=1"
      }
    },
-    "node_modules/dompurify": {
-      "version": "2.5.8",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.8.tgz",
-      "integrity": "sha512-o1vSNgrmYMQObbSSvF/1brBYEQPHhV1+gsmrusO7/GXtp1T9rCS8cXFqVxK/9crT1jA6Ccv+5MTSjBNqr7Sovw==",
-      "license": "(MPL-2.0 OR Apache-2.0)",
-      "optional": true
-    },
    "node_modules/domutils": {
      "version": "3.2.2",
      "resolved": "https://registry.npmjs.org/domutils/-/domutils-3.2.2.tgz",
@@ -30410,6 +30403,13 @@
        "html2canvas": "^1.0.0-rc.5"
      }
    },
+    "node_modules/jspdf/node_modules/dompurify": {
+      "version": "2.5.8",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.8.tgz",
+      "integrity": "sha512-o1vSNgrmYMQObbSSvF/1brBYEQPHhV1+gsmrusO7/GXtp1T9rCS8cXFqVxK/9crT1jA6Ccv+5MTSjBNqr7Sovw==",
+      "license": "(MPL-2.0 OR Apache-2.0)",
+      "optional": true
+    },
    "node_modules/jsprim": {
      "version": "2.0.2",
      "resolved": "https://registry.npmjs.org/jsprim/-/jsprim-2.0.2.tgz",
@@ -49848,7 +49848,7 @@
        "d3": "^3.5.17",
        "d3-tip": "^0.9.1",
        "dayjs": "^1.11.13",
-        "dompurify": "^3.2.3",
+        "dompurify": "^3.2.4",
        "fast-safe-stringify": "^2.1.1",
        "lodash": "^4.17.21",
        "nvd3-fork": "^2.0.5",
--- a/superset-frontend/plugins/legacy-preset-chart-nvd3/package.json
+++ b/superset-frontend/plugins/legacy-preset-chart-nvd3/package.json
@@ -31,7 +31,7 @@
  "dependencies": {
    "d3": "^3.5.17",
    "d3-tip": "^0.9.1",
-    "dompurify": "^3.2.3",
+    "dompurify": "^3.2.4",
    "fast-safe-stringify": "^2.1.1",
    "lodash": "^4.17.21",
    "dayjs": "^1.11.13",