Release v1152+srv582.web409: chore(deps): bump dompurify from 5.6.3 to 5.6.4 (#1529) · comppolicylab/pingpong

v1152+srv582.web409
aaf4751
Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified
Learn about vigilant mode
Choose a tag to compare

Filter

View all tags

v1152+srv582.web409: chore(deps): bump dompurify from 5.6.3 to 5.6.4 (#1529)

v1152+srv582.web409
aaf4751
Choose a tag to compare

Filter

View all tags
Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.

GPG key ID: B5690EEEBB952194

Verified
Learn about vigilant mode

ekassos tagged this 13 Mar 19:33

## Internal
### Updates & Improvements
- Upgrade devalue from 5.6.3 to 5.6.4 to resolve [devalue has prototype
pollution in devalue.parse and
devalue.unflatten](https://github.com/comppolicylab/pingpong/security/dependabot/136)
and [Sveltejs devalue's `devalue.parse` and `devalue.unflatten` emit
objects with `__proto__` own
properties](https://github.com/comppolicylab/pingpong/security/dependabot/137).

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

Uh oh!