Update dependency dompurify to v2.5.4 #34
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
2.2.6
->2.5.4
2.0.1
->2.4.0
Release Notes
cure53/DOMPurify (dompurify)
v2.5.4
: DOMPurify 2.5.4Compare Source
isNaN
checks affecting MSIE, thanks @tulachv2.5.3
: DOMPurify 2.5.3Compare Source
v2.5.2
: DOMPurify 2.5.2Compare Source
v2.5.1
: DOMPurify 2.5.1Compare Source
Note that this is a security release and should be upgraded to immediately. Please also note that further releases may follow as the underlying vulnerability is apparently new and further variations may be discovered.
v2.5.0
: DOMPurify 2.5.0Compare Source
SAFE_FOR_XML
to enable better control over comment scrubbingv2.4.9
: DOMPurify 2.4.9Compare Source
v2.4.8
: DOMPurify 2.4.8Compare Source
v2.4.7
: DOMPurify 2.4.7Compare Source
v2.4.6
: DOMPurify 2.4.6Compare Source
noframes
element is permitted, thanks @leeNv2.4.5
: DOMPurify 2.4.5Compare Source
v2.4.4
: DOMPurify 2.4.4Compare Source
ALLOW_SELF_CLOSE_IN_ATTR
flag, thanks @edg2s @AndreVirtimoshadowrootmode
, thanks @mfreed7v2.4.3
: DOMPurify 2.4.3Compare Source
v2.4.2
: DOMPurify 2.4.2Compare Source
v2.4.1
: DOMPurify 2.4.1Compare Source
ALLOWED_NAMESPACES
for better XML handling, thanks @kevin-deyoungster @tosmolkaSAFE_FOR_TEMPLATES
istrue
v2.4.0
: DOMPurify 2.4.0Compare Source
v2.3.12
: DOMPurify 2.3.12Compare Source
v2.3.11
: DOMPurify 2.3.11Compare Source
v2.3.10
: DOMPurify 2.3.10Compare Source
v2.3.9
: DOMPurify 2.3.9Compare Source
v2.3.8
: DOMPurify 2.3.8Compare Source
No other changes compared to 2.3.7 release, which entail:
v2.3.7
Compare Source
v2.3.6
: DOMPurify 2.3.6Compare Source
v2.3.5
: DOMPurify 2.3.5Compare Source
v2.3.4
: DOMPurify 2.3.4Compare Source
feImage
elements, thanks @ydanivv2.3.3
: DOMPurify 2.3.3Compare Source
PARSER_MEDIA_TYPE
spotted by @securitum-mbv2.3.2
: DOMPurify 2.3.2Compare Source
PARSER_MEDIA_TYPE
, thanks @tosmolkav2.3.1
: DOMPurify 2.3.1Compare Source
FORBID_CONTENTS
setting configurablerole
to URI-safe attributesv2.3.0
: DOMPurify 2.3.0Compare Source
v2.2.9
: DOMPurify 2.2.9Compare Source
NAMESPACE
configv2.2.8
: DOMPurify 2.2.8Compare Source
NAMESPACE
config option, thanks @NateScarletv2.2.7
: DOMPurify 2.2.7Compare Source
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about these updates again.
This PR has been generated by Mend Renovate. View repository job log here.