search

formio / formio.js

JavaScript powered Forms with JSON Form Builder
https://formio.github.io/formio.js
MIT License
1.89k stars 1.06k forks source link

[Snyk] Upgrade dompurify from 3.0.5 to 3.0.8 #5492

Closed heather-formio closed 6 months ago

heather-formio commented 9 months ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade dompurify from 3.0.5 to 3.0.8.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **3 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2024-01-05.
Release notes
Package name: dompurify
  • 3.0.8 - 2024-01-05
    • Fixed errors caused by conditional exports, thanks @ ssi02014
    • Fixed a type error when working with custom element config, thanks @ cpmotion
  • 3.0.7 - 2024-01-04
    • Added better protection against CSPP attacks, thanks @ kevin-mizu
    • Updated browser versions for automated tests
    • Updated Node versions for automated tests
    • Refactored code base, thanks @ ssi02014
    • Refactored build system & deployment, thanks @ ssi02014
  • 3.0.6 - 2023-09-28
    • Refactored the core code-base and several utilities, thanks @ ssi02014
    • Updated and fixed several sections of the README, thanks @ ssi02014
    • Updated several outdated build and test dependencies
  • 3.0.5 - 2023-07-11
    • Fixed a licensing issue spotted and reported by @ george-thomas-hill
    • Updated several build and test dependencies
from dompurify GitHub release notes
Commit messages
Package name: dompurify
  • ec1346a Merge pull request #899 from cure53/main
  • b3b441e chore: Preparing 3.0.8 release
  • 486673f Merge pull request #898 from cpmotion/issue-897
  • 38e4dc3 fix: Avoid TypeError for null values on CUSTOM_ELEMENT_HANDLING config.
  • 771eb82 Merge pull request #896 from ssi02014/revert/conditionalExports
  • 2d963cf fix: revert conditional exports
  • aa2c561 Merge pull request #893 from cure53/main
  • ab2c081 chore: Preparing 3.0.7 release
  • d7498e0 Merge pull request #890 from cure53/dependabot/github_actions/github/codeql-action-3
  • 813bea6 build(deps): bump github/codeql-action from 2 to 3
  • 31e0300 chore: mapped Node 21 to browserstack testing
  • 595fc22 chore: added newer node releases to test suite
  • 956e074 chore: extended browser test array with latest versions
  • d1e4f21 see #881
  • d7318ee see #881
  • f89d726 fix: added better protection against CSPP, thanks @ Kevin-Mizu
  • db73dd7 Merge pull request #885 from cure53/main
  • c29aa90 Update README.md
  • d25f8b5 Merge pull request #874 from ssi02014/chore/package
  • e80470f revert: commit-amend-build.sh
  • 8d94280 chore: packagejson conditional exports
  • 2c66eb1 Merge pull request #872 from nanase/fix-typo
  • d74271a Fix typo in README
  • db13816 Merge pull request #870 from ssi02014/chore/build
Compare
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: 🧐 [View latest project report](https://app.snyk.io/org/heather-jrc/project/744bedfc-61f3-43e0-b360-803f18578069?utm_source=github&utm_medium=referral&page=upgrade-pr) 🛠 [Adjust upgrade PR settings](https://app.snyk.io/org/heather-jrc/project/744bedfc-61f3-43e0-b360-803f18578069/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) 🔕 [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/heather-jrc/project/744bedfc-61f3-43e0-b360-803f18578069/settings/integration?pkg=dompurify&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)