[Snyk] Upgrade dompurify from 2.0.17 to 3.2.2

[Erkansukgen]

Snyk has created this PR to upgrade dompurify from 2.0.17 to 3.2.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

⚠️ Warning: This PR contains major version upgrade(s), and may be a breaking change.

• The recommended version is 67 versions ahead of your current version.

• The recommended version was released a month ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Prototype Pollution SNYK-JS-DOMPURIFY-7984421	118	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-DOMPURIFY-1035544	118	No Known Exploit
	Cross-site Scripting (XSS) SNYK-JS-DOMPURIFY-2863266	118	Proof of Concept
	Template Injection SNYK-JS-DOMPURIFY-6474511	118	Proof of Concept
	Cross-site Scripting (XSS) SNYK-JS-DOMPURIFY-8184974	118	Proof of Concept
	Prototype Pollution SNYK-JS-DOMPURIFY-8318045	118	No Known Exploit

Release notes

Package name: dompurify

• 3.2.2 - 2024-11-29
  
  • Fixed a possible bypass in case a rather specific config for custom elements is set, thanks @ Yaniv-git
  • Fixed several minor issues with the type definitions, thanks again @ reduckted
  • Fixed a minor issue with the types reference for trusted types, thanks @ reduckted
  • Fixed a minor problem with the template detection regex on some systems, thanks @ svdb99
• 3.2.1 - 2024-11-20
  
  • Fixed several minor issues with the type definitions, thanks @ reduckted @ ghiscoding @ asamuzaK @ MiniDigger
  • Fixed an issue with non-minified dist files and order of imports, thanks @ reduckted
• 3.2.0 - 2024-11-11
  
  • Added type declarations, thanks @ reduckted , @ philmayfield, @ aloisklink, @ ssi02014 and others
  • Fixed a minor issue with the handling of hooks, thanks @ kevin-mizu
• 3.1.7 - 2024-09-26
  
  • Fixed an issue with comment detection and possible bypasses with specific config settings, thanks @ masatokinugawa
  • Fixed several smaller typos in documentation and test & build files, thanks @ christianhg
  • Added better support for Angular compiler, thanks @ jeroen1602
  • Added several new attributes to HTML and SVG allow-list, thanks @ Gigabyte5671 and @ Rotzbua
  • Removed the foreignObject element from the list of HTML entry-points, thanks @ masatokinugawa
  • Bumped several dependencies to be more up to date
• 3.1.6 - 2024-07-05
  
  • Fixed an issue with the execution logic of attribute hooks to prevent bypasses, thanks @ kevin-mizu
  • Fixed an issue with element removal leading to uncaught errors through DOM Clobbering, thanks @ realansgar
  • Fixed a minor problem with the bower file pointing to the wrong dist path
  • Fixed several minor typos in docs, comments and comment blocks, thanks @ Rotzbua
  • Updated several development dependencies
• 3.1.5 - 2024-05-31
  
  • Fixed a minor issue with the dist paths in bower.js, thanks @ HakumenNC
  • Fixed a minor issue with sanitizing HTML coming from copy&paste Word content, thanks @ kakao-bishop-cho
• 3.1.4 - 2024-05-20
• 3.1.3 - 2024-05-11
• 3.1.2 - 2024-04-30
• 3.1.1 - 2024-04-26
• 3.1.0 - 2024-04-07
• 3.0.11 - 2024-03-21
• 3.0.10 - 2024-03-19
• 3.0.9 - 2024-02-20
• 3.0.8 - 2024-01-05
• 3.0.7 - 2024-01-04
• 3.0.6 - 2023-09-28
• 3.0.5 - 2023-07-11
• 3.0.4 - 2023-06-29
• 3.0.3 - 2023-05-06
• 3.0.2 - 2023-04-14
• 3.0.1 - 2023-03-01
• 3.0.0 - 2023-02-13
• 2.5.8 - 2024-12-09
  
  • Fixed two conditional sanitizer bypasses discovered by @ parrot409 and @ Slonser
  • Updated the attribute clobbering checks to prevent future bypasses, thanks @ parrot409
• 2.5.7 - 2024-09-26
  
  • Fixed an issue with comment detection and possible bypasses with specific config settings, thanks @ masatokinugawa
  • Removed the foreignObject element from the list of HTML entry-points, thanks @ masatokinugawa
• 2.5.6 - 2024-07-05
  
  • Fixed an issue with the execution logic of attribute hooks to prevent bypasses, thanks @ kevin-mizu
  • Fixed a minor problem with the bower file pointing to the wrong dist path
  • Updated several development dependencies
• 2.5.5 - 2024-05-31
• 2.5.4 - 2024-05-20
• 2.5.3 - 2024-05-11
• 2.5.2 - 2024-04-30
• 2.5.1 - 2024-04-26
• 2.5.0 - 2024-04-07
• 2.4.9 - 2024-03-21
• 2.4.8 - 2024-03-19
• 2.4.7 - 2023-07-11
• 2.4.6 - 2023-07-10
• 2.4.5 - 2023-03-01
• 2.4.4 - 2023-02-13
• 2.4.3 - 2023-01-06
• 2.4.2 - 2023-01-05
• 2.4.1 - 2022-11-10
• 2.4.0 - 2022-08-24
• 2.3.12 - 2022-08-23
• 2.3.11 - 2022-08-23
• 2.3.10 - 2022-07-18
• 2.3.9 - 2022-07-11
• 2.3.8 - 2022-05-13
• 2.3.7 - 2022-05-11
• 2.3.6 - 2022-02-16
• 2.3.5 - 2022-01-26
• 2.3.4 - 2021-12-07
• 2.3.3 - 2021-09-20
• 2.3.2 - 2021-09-15
• 2.3.1 - 2021-08-13
• 2.3.0 - 2021-07-06
• 2.2.9 - 2021-06-01
• 2.2.8 - 2021-04-28
• 2.2.7 - 2021-03-12
• 2.2.6 - 2020-12-18
• 2.2.5 - 2020-12-18
• 2.2.4 - 2020-12-15
• 2.2.3 - 2020-12-07
• 2.2.2 - 2020-11-02
• 2.2.1 - 2020-11-02
• 2.2.0 - 2020-10-21
• 2.1.1 - 2020-09-25
• 2.1.0 - 2020-09-23
• 2.0.17 - 2020-09-20

from dompurify GitHub release notes

---

Important

• Warning: This PR contains a major version upgrade, and may be a breaking change.
• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs