Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Bump dompurify from 3.1.6 to 3.1.7 (#191)
Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.1.6 to 3.1.7. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cure53/DOMPurify/releases">dompurify's releases</a>.</em></p> <blockquote> <h2>DOMPurify 3.1.7</h2> <ul> <li>Fixed an issue with comment detection and possible bypasses with specific config settings, thanks <a href="https://github.com/masatokinugawa"><code>@masatokinugawa</code></a></li> <li>Fixed several smaller typos in documentation and test & build files, thanks <a href="https://github.com/christianhg"><code>@christianhg</code></a></li> <li>Added better support for Angular compiler, thanks <a href="https://github.com/jeroen1602"><code>@jeroen1602</code></a></li> <li>Added several new attributes to HTML and SVG allow-list, thanks <a href="https://github.com/Gigabyte5671"><code>@Gigabyte5671</code></a> and <a href="https://github.com/Rotzbua"><code>@Rotzbua</code></a></li> <li>Removed the <code>foreignObject</code> element from the list of HTML entry-points, thanks <a href="https://github.com/masatokinugawa"><code>@masatokinugawa</code></a></li> <li>Bumped several dependencies to be more up to date</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/cure53/DOMPurify/commit/69c8c12940dbf98aef5f44eea77151e1aef532dc"><code>69c8c12</code></a> Merge pull request <a href="https://redirect.github.com/cure53/DOMPurify/issues/999">#999</a> from cure53/main</li> <li><a href="https://github.com/cure53/DOMPurify/commit/15f54ed66d99a824d8d3030f711ff82af68ad191"><code>15f54ed</code></a> chore: Regenerated source maps</li> <li><a href="https://github.com/cure53/DOMPurify/commit/4f3b5cb2025bde4ffabaed7167b8d1f4c157c99c"><code>4f3b5cb</code></a> Merge pull request <a href="https://redirect.github.com/cure53/DOMPurify/issues/998">#998</a> from cure53/main</li> <li><a href="https://github.com/cure53/DOMPurify/commit/50aec03cab3f63b4fdf459dd57505f627e0679f3"><code>50aec03</code></a> chore: Preparing 3.1.7 release</li> <li><a href="https://github.com/cure53/DOMPurify/commit/4a9ec1f2fd19848d359c7c73294b3adaaed1a9b0"><code>4a9ec1f</code></a> fix: Fixed an issue with comment detection and possible bypasses with specifi...</li> <li><a href="https://github.com/cure53/DOMPurify/commit/50ea51575ec7e4bf642b245ca1e53b7b61eaa226"><code>50ea515</code></a> Merge pull request <a href="https://redirect.github.com/cure53/DOMPurify/issues/993">#993</a> from cure53/dependabot/npm_and_yarn/body-parser-1.20.3</li> <li><a href="https://github.com/cure53/DOMPurify/commit/b6188eced71279b709ae28fbe184c35a6f98218e"><code>b6188ec</code></a> build(deps): bump body-parser from 1.20.1 to 1.20.3</li> <li><a href="https://github.com/cure53/DOMPurify/commit/1e2cb9b72150e87409c776cb28c192f06dc2251e"><code>1e2cb9b</code></a> Merge pull request <a href="https://redirect.github.com/cure53/DOMPurify/issues/990">#990</a> from jeroen1602/angular_support</li> <li><a href="https://github.com/cure53/DOMPurify/commit/745b5212083b8e816e58328696472d3f0d69b18c"><code>745b521</code></a> Added support for the Angular compiler.</li> <li><a href="https://github.com/cure53/DOMPurify/commit/c1949fbd8aaf0743d6a311434985c2fbe1ebeb78"><code>c1949fb</code></a> Merge pull request <a href="https://redirect.github.com/cure53/DOMPurify/issues/989">#989</a> from cure53/dependabot/npm_and_yarn/webpack-5.94.0</li> <li>Additional commits viewable in <a href="https://github.com/cure53/DOMPurify/compare/3.1.6...3.1.7">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dompurify&package-manager=npm_and_yarn&previous-version=3.1.6&new-version=3.1.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information