chore(deps): bump dompurify from 2.3.6 to 2.4.0

[dependabot[bot]]

Bumps dompurify from 2.3.6 to 2.4.0.

Release notes

Sourced from dompurify's releases.

DOMPurify 2.4.0

• Removed bundled types again as they caused too much trouble

DOMPurify 2.3.12

• Fixed an issue in 2.3.11 causing errors w. TypeScript, see #712, thanks @​Mirco469, @​brentkeller, @​aryanisml

DOMPurify 2.3.11

• Added generated type definitions for better compatibility
• Added SANITIZE_NAMED_PROPS config option, thanks @​SoheilKhodayari
• Updated README and config documentation, thanks @​0xedward
• Updated test suite with newer Node versions

DOMPurify 2.3.10

• Added support for sanitization of attributes requiring Trusted Types, thanks @​tosmolka

DOMPurify 2.3.9

• Made TAG and ATTR config options case-sensitive when parsing XHTML, thanks @​tosmolka
• Bumped some dependencies, thanks @​is2ei
• Included github-actions in the dependabot config, thanks @​nathannaveen

DOMPurify 2.3.8

• Cleaned up a minor issue with the 2.3.7 release, thanks @​johnbirds

No other changes compared to 2.3.7 release, which entail:

• Fixes around a bug in Safari, thanks @​sybrew
• Slightly improved performance, thanks @​tiny-ben-tran
• Lots of chores, bumps and typo fixes, thanks @​is2ei
• Removed unnecessary string trimming, thanks @​christopherehlen

Commits

• 5f8e875 chore: prepare 2.4.0 release
• 652d200 fix: Removed bundled types entirely due to 3rd party build errors
• caaae5e chore: prepare 2.3.12 release
• b4c57a8 See #712
• 30af6c8 chore: prepare 2.3.11 release
• 75b384f docs: Updated README and added new contributor
• b49ee90 Merge pull request #710 from SoheilKhodayari/main
• e242b43 Extra DOM Clobbering protection via SANITIZE_NAMED_PROPS config
• fb58d2d docs: Added instructions for Angular, see #705
• 4f62dcd chore: Added new npm script "types" to create type definitions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[vercel[bot]]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Updated
api-oas-checker	✅ Ready (Inspect)	Visit Preview	Sep 30, 2022 at 3:46PM (UTC)