search

stanleyowen / otlio

An open source project of Todo which is easy to use and easy to organize!
https://otlio.netlify.app
MIT License
23 stars 4 forks source link

[Snyk] Upgrade dompurify from 2.3.3 to 2.3.6 #349

Closed snyk-bot closed 2 years ago

snyk-bot commented 2 years ago

Snyk has created this PR to upgrade dompurify from 2.3.3 to 2.3.6.

merge advice :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

Release notes
Package name: dompurify
  • 2.3.6 - 2022-02-16
    • Added an option to allow HTML5 doctypes, thanks @ tosmolka
    • Bumped several dependencies, thanks @ is2ei
    • Updated documentation to cover recently added flags, thanks @ is2ei
  • 2.3.5 - 2022-01-26
    • Performed several chores and cleanups, thanks @ is2ei
    • Fixed a bug when working with Trusted Types, thanks @ tosmolka
    • Fixed a bug with weird behavior on insecure nodes in IN_PLACE mode, thanks @ tosmolka
    • Added more SVG attributes to allow-list, thanks @ rzhade3
  • 2.3.4 - 2021-12-07
    • Added support for Custom Elements, thanks @ franktopel
    • Added new config settings to control Custom Element sanitizing, thanks @ franktopel
    • Added faster clobber checks, thanks @ GrantGryczan
    • Allow-listed SVG feImage elements, thanks @ ydaniv
    • Updated test suite
    • Update supported Node versions
    • Updated README
  • 2.3.3 - 2021-09-20
    • Fixed a bug in the handing of PARSER_MEDIA_TYPE spotted by @ securitum-mb
    • Adjusted the tests for MSIE to make sure the results are as expected now
from dompurify GitHub release notes
Commit messages
Package name: dompurify
  • c84f6e4 chore: preparing 2.3.6 release
  • 82e3c38 chore: added missing eslint exception
  • a0c2d08 Merge pull request #651 from tosmolka/tosmolka/fix-doctype
  • 1237e91 Merge pull request #650 from is2ei/fix-unused-variable
  • 0194e87 chore: use unused variable
  • 9821fd2 Revert formatting in test/fixtures/expect.js
  • f8f7e0c Build new version
  • 8d57807 Fix lint error
  • eae08f5 Merge branch 'main' of https://github.com/cure53/DOMPurify into tosmolka/fix-doctype
  • 94ba86d Allow only html doctype
  • dd59cdc Merge pull request #648 from is2ei/fix-test-on-IE11
  • e16993b chore: fix test on IE11
  • 953b7be Merge pull request #647 from is2ei/bump-qunit
  • eb11b8f chore: bump qunit and upgrade tests
  • d0483bb Merge pull request #646 from cure53/dependabot/npm_and_yarn/follow-redirects-1.14.8
  • a7314fe build(deps): bump follow-redirects from 1.13.1 to 1.14.8
  • 00b6578 chore: added a missing eslint-disable-next-line comment
  • c46d05f Merge branch 'main' of github.com:cure53/DOMPurify into main
  • 333883f See #645
  • 685b258 Merge pull request #644 from is2ei/bump-xo
  • f54547e chore: bump xo
  • f7553b7 Serialize !doctype name only
  • 1006f78 Merge branch 'main' of https://github.com/cure53/DOMPurify into tosmolka/fix-doctype
  • 5fe9c67 Fix attempt without XMLSerializer
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

netlify[bot] commented 2 years ago

✔️ Deploy Preview for otlio ready!

🔨 Explore the source changes: f0b7da6967e26e5d6f717242fcb31a8721927b36

🔍 Inspect the deploy log: https://app.netlify.com/sites/otlio/deploys/62293b5eab8e4600091b5702

😎 Browse the preview: https://deploy-preview-349--otlio.netlify.app/