[Snyk] Upgrade dompurify from 2.2.7 to 2.3.3

[snyk-bot]

Snyk has created this PR to upgrade dompurify from 2.2.7 to 2.3.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 6 versions ahead of your current version.
• The recommended version was released a month ago, on 2021-09-20.

Release notes

Package name: dompurify

• 2.3.3 - 2021-09-20
  
  • Fixed a bug in the handing of PARSER_MEDIA_TYPE spotted by @ securitum-mb
  • Adjusted the tests for MSIE to make sure the results are as expected now
• 2.3.2 - 2021-09-15
  
  • Added new config option PARSER_MEDIA_TYPE, thanks @ tosmolka
• 2.3.1 - 2021-08-13
  
  • Added code to make FORBID_CONTENTS setting configurable
  • Added role to URI-safe attributes
  • Added more paranoid handling for template elements
• 2.3.0 - 2021-07-06
  
  • Added better handling of document creation on Firefox
  • Added better handling of version numbers in license file
  • Added two new browser versions to test suite config
  • Fixed a bug with handling of custom data attributes
• 2.2.9 - 2021-06-01
  
  • Fixed some minor issues related to the NAMESPACE config
  • Fixed some minor issues relating to empty input
  • Fixed some minor issues relating to handling of invalid XML
• 2.2.8 - 2021-04-28
  
  • Added NAMESPACE config option, thanks @ NateScarlet
  • Added better fallback for older browsers & PhantomJS, thanks @ albanx
  • Extended allow-list for SVG attributes a bit
• 2.2.7 - 2021-03-12
  
  • Fixed handling of unsupported browsers, i.e. Safari 9 and older
  • Fixed various minor bugs and typos in README and examples
  • Added better handling of potentially harmful "is" attributes
  • Added better handling of lookupGetter functionality

from dompurify GitHub release notes

Commit messages

Package name: dompurify

• 7fbe07c chore: Preparing 2.3.3 release
• dff4b63 test: Fixed one remaining MSIE test case
• f6bf468 test: Fixed tests for MSIE
• f7fa358 Merge branch 'main' of github.com:cure53/DOMPurify into main
• 5fff180 fix: Fixed some broken code breaking PARSER_MEDIA_TYPE, spotted by
• 6dde625 docs: added @ GrantGryczan to list of sponsors
• c9709e3 Merge pull request Full text search on different version docsifyjs/docsify#572 from zcorpan/patch-1
• 3be3e5b Fix README.md to reference application/xhtml+xml
• 36135bb docs: mentioned new config option in README
• 6fb973e chore: Preparing 2.3.2 release
• 907255b fix: Fixed a typo in the tests
• aca1fee test: Fixed tests for MSIE & Edge 18
• 12d255c test: Made further changes to fix tests for MSIE11
• f5504c8 test: Attempted to fix tests for Edge 18 & MSIE11
• 20237ae Merge pull request Link to File (.csv, .pdf) docsifyjs/docsify#568 from tosmolka/tosmolka/567
• c624936 Add PARSER_MEDIA_TYPE option to support strict XHTML documents
• dbcd8cd docs: added lowdefy as sponsor to README
• fae473d test: Fixed tests for MSIE10
• 6cfcdf5 chore: Preparing 2.3.1 release
• e32ca24 Added a mitigation against a problem with templates inside select
• ded85d9 Merge pull request Ability to set a custom page title via _sidebar.md docsifyjs/docsify#557 from 0xedward/expose-FORBID_CONTENTS
• 56c29b1 Format with prettier
• d587968 Add unit test for Config flags: FORBID_CONTENTS + FORBID_TAGS
• aa230fd Expose `FORBID_CONTENTS` to allow users to specify which elements DOMPurify should remove from the input, including those elements' children

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs