From c9a33e91c3a44261358930dff596b7468f52f06f Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 13 Oct 2024 20:40:36 +0000
Subject: [PATCH] fix: package.json & package-lock.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-DOMPURIFY-8184974
---
 package-lock.json | 15 ++++++++-------
 package.json      |  2 +-
 2 files changed, 9 insertions(+), 8 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index f280025a..9f8641d8 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -17,7 +17,7 @@
         "adaptivecards": "^2.10.0",
         "axios": "1.7.4",
         "cypress-real-events": "^1.7.0",
-        "dompurify": "2.4.9",
+        "dompurify": "^2.5.0",
         "flatpickr": "4.6.3",
         "immutable": "^4.0.0-rc.12",
         "lodash": "^4.17.21",
@@ -5452,9 +5452,10 @@
       "dev": true
     },
     "node_modules/dompurify": {
-      "version": "2.4.9",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.4.9.tgz",
-      "integrity": "sha512-iHtnxYMotKgOTvxIqq677JsKHvCOkAFqj9x8Mek2zdeHW1XjuFKwjpmZeMaXQRQ8AbJZDbcRz/+r1QhwvFtmQg=="
+      "version": "2.5.0",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.0.tgz",
+      "integrity": "sha512-5RXhAXSCrKTqt9pSbobT9PVRX+oPpENplTZqCiK1l0ya+ZOzwo9kqsGLbYRsAhzIiLCwKEy99XKSSrqnRTLVcw==",
+      "license": "(MPL-2.0 OR Apache-2.0)"
     },
     "node_modules/domutils": {
       "version": "1.7.0",
@@ -17416,9 +17417,9 @@
       "dev": true
     },
     "dompurify": {
-      "version": "2.4.9",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.4.9.tgz",
-      "integrity": "sha512-iHtnxYMotKgOTvxIqq677JsKHvCOkAFqj9x8Mek2zdeHW1XjuFKwjpmZeMaXQRQ8AbJZDbcRz/+r1QhwvFtmQg=="
+      "version": "2.5.0",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.0.tgz",
+      "integrity": "sha512-5RXhAXSCrKTqt9pSbobT9PVRX+oPpENplTZqCiK1l0ya+ZOzwo9kqsGLbYRsAhzIiLCwKEy99XKSSrqnRTLVcw=="
     },
     "domutils": {
       "version": "1.7.0",
diff --git a/package.json b/package.json
index 4777b021..44420aea 100644
--- a/package.json
+++ b/package.json
@@ -52,7 +52,7 @@
     "adaptivecards": "^2.10.0",
     "axios": "1.7.4",
     "cypress-real-events": "^1.7.0",
-    "dompurify": "2.4.9",
+    "dompurify": "2.5.0",
     "flatpickr": "4.6.3",
     "immutable": "^4.0.0-rc.12",
     "lodash": "^4.17.21",