chore(deps): bump dompurify from 3.3.0 to 3.3.2 in /web (#33062)

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 06:48:59 +09:00 · 2026-03-06 06:48:59 +09:00 · 98ba091a50
parent ed0b27e4d6
commit 98ba091a50
2 changed files with 18 additions and 31 deletions
--- a/web/package.json
+++ b/web/package.json
@ -99,7 +99,7 @@
    "cron-parser": "5.4.0",
    "dayjs": "1.11.19",
    "decimal.js": "10.6.0",
-    "dompurify": "3.3.0",
+    "dompurify": "3.3.2",
    "echarts": "5.6.0",
    "echarts-for-react": "3.0.5",
    "elkjs": "0.9.3",
--- a/web/pnpm-lock.yaml
+++ b/web/pnpm-lock.yaml
@ -169,8 +169,8 @@ importers:
        specifier: 10.6.0
        version: 10.6.0
      dompurify:
-        specifier: 3.3.0
-        version: 3.3.0
+        specifier: 3.3.2
+        version: 3.3.2
      echarts:
        specifier: 5.6.0
        version: 5.6.0
@ -4492,8 +4492,9 @@ packages:
  dompurify@3.2.7:
    resolution: {integrity: sha512-WhL/YuveyGXJaerVlMYGWhvQswa7myDG17P7Vu65EWC05o8vfeNbvNf4d/BOvH99+ZW+LlQsc1GDKMa1vNK6dw==}

-  dompurify@3.3.0:
-    resolution: {integrity: sha512-r+f6MYR1gGN1eJv0TVQbhA7if/U7P87cdPl3HN5rikqaBSBxLiCb/b9O+2eG0cxz0ghyU+mU1QkbsOwERMYlWQ==}
+  dompurify@3.3.2:
+    resolution: {integrity: sha512-6obghkliLdmKa56xdbLOpUZ43pAR6xFy1uOrxBaIDjT+yaRuuybLjGS9eVBoSR/UPU5fq3OXClEHLJNGvbxKpQ==}
+    engines: {node: '>=20'}

  domutils@3.2.2:
    resolution: {integrity: sha512-6kZKyUajlDuqlHKVX1w7gyslj9MPIXzIFiz/rGu35uC1wMi+kMhQwGhl4lt9unC9Vb9INnY9Z3/ZA3+FhASLaw==}
@ -4657,7 +4658,7 @@ packages:
      eslint: '*'

  eslint-plugin-better-tailwindcss@https://pkg.pr.new/hyoban/eslint-plugin-better-tailwindcss@a520d15:
-    resolution: {integrity: sha512-hbxpqInIW0Q5UIwXEuQxSBjrMd5bYttXeSPU6dfK2zpECKNIzGR+KXZZEdZaPagEMDJosSyQ9RKievmBcCAxfA==, tarball: https://pkg.pr.new/hyoban/eslint-plugin-better-tailwindcss@a520d15}
+    resolution: {tarball: https://pkg.pr.new/hyoban/eslint-plugin-better-tailwindcss@a520d15}
    version: 4.3.1
    engines: {node: ^20.19.0 || ^22.12.0 || >=23.0.0}
    peerDependencies:
@ -6548,9 +6549,6 @@ packages:
    resolution: {integrity: sha512-h36JMxKRqrAxVD8201FrCpyeNuUY9Y5zZwujr20fFO77tpUtGa6EZzfKw/3WaiBX95fq7+MpsuMLNdSnORAwSA==}
    engines: {node: '>=14.18.0'}

-  randombytes@2.1.0:
-    resolution: {integrity: sha512-vYl3iOX+4CKUWuxGi9Ukhie6fsqXqS9FE2Zaic4tNFD2N2QQaXOMFbuKK4QmDHC0JO6B1Zp41J0LpT0oR68amQ==}
-
  rc@1.2.8:
    resolution: {integrity: sha512-y3bGgqKj3QBdxLbLkomlohkvsA8gdAiUQlSBJnBhfn+BPxg4bc62d8TcBW15wavDfgexCgccckhcZvywyQYPOw==}
    hasBin: true
@ -6946,9 +6944,6 @@ packages:
    engines: {node: '>=10'}
    hasBin: true

-  serialize-javascript@6.0.2:
-    resolution: {integrity: sha512-Saa1xPByTTq2gdeFZYLLo+RFE35NHZkAbqZeWNd3BpzppeVisAqpDjcp8dyf6uIvEqJRd46jemmyA4iFIeVk8g==}
-
  seroval-plugins@1.5.0:
    resolution: {integrity: sha512-EAHqADIQondwRZIdeW2I636zgsODzoBDwb3PT/+7TLDWyw1Dy/Xv7iGUIEXXav7usHDE9HVhOU61irI3EnyyHA==}
    engines: {node: '>=10'}
@ -7223,8 +7218,8 @@ packages:
    engines: {node: '>=18'}
    deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me

-  terser-webpack-plugin@5.3.16:
-    resolution: {integrity: sha512-h9oBFCWrq78NyWWVcSwZarJkZ01c2AyGrzs1crmHZO3QUg9D61Wu4NPjBy69n7JqylFF5y+CsUZYmYEIZ3mR+Q==}
+  terser-webpack-plugin@5.3.17:
+    resolution: {integrity: sha512-YR7PtUp6GMU91BgSJmlaX/rS2lGDbAF7D+Wtq7hRO+MiljNmodYvqslzCFiYVAgW+Qoaaia/QUIP4lGXufjdZw==}
    engines: {node: '>= 10.13.0'}
    peerDependencies:
      '@swc/core': '*'
@ -7567,7 +7562,7 @@ packages:
    resolution: {integrity: sha512-KzIbH/9tXat2u30jf+smMwFCsno4wHVdNmzFyL+T/L3UGqqk6JKfVqOFOZEpZSHADH1k40ab6NUIXZq422ov3Q==}

  vinext@https://pkg.pr.new/hyoban/vinext@556a6d6:
-    resolution: {integrity: sha512-Sz8RkTDsY6cnGrevlQi4nXgahu8okEGsdKY5m31d/L9tXo35bNETMHfVee5gaI2UKZS9LMcffWaTOxxINUgogQ==, tarball: https://pkg.pr.new/hyoban/vinext@556a6d6}
+    resolution: {tarball: https://pkg.pr.new/hyoban/vinext@556a6d6}
    version: 0.0.5
    engines: {node: '>=22'}
    hasBin: true
@ -12198,7 +12193,7 @@ snapshots:
    optionalDependencies:
      '@types/trusted-types': 2.0.7

-  dompurify@3.3.0:
+  dompurify@3.3.2:
    optionalDependencies:
      '@types/trusted-types': 2.0.7

@ -13978,7 +13973,7 @@ snapshots:
      d3-sankey: 0.12.3
      dagre-d3-es: 7.0.11
      dayjs: 1.11.19
-      dompurify: 3.3.0
+      dompurify: 3.3.2
      katex: 0.16.25
      khroma: 2.1.0
      lodash-es: 4.17.23
@ -14124,8 +14119,8 @@ snapshots:

  micromark-extension-mdxjs@3.0.0:
    dependencies:
-      acorn: 8.16.0
-      acorn-jsx: 5.3.2(acorn@8.16.0)
+      acorn: 8.15.0
+      acorn-jsx: 5.3.2(acorn@8.15.0)
      micromark-extension-mdx-expression: 3.0.1
      micromark-extension-mdx-jsx: 3.0.2
      micromark-extension-mdx-md: 2.0.0
@ -14776,10 +14771,6 @@ snapshots:

  radash@12.1.1: {}

-  randombytes@2.1.0:
-    dependencies:
-      safe-buffer: 5.2.1
-
  rc@1.2.8:
    dependencies:
      deep-extend: 0.6.0
@ -15284,7 +15275,8 @@ snapshots:
    dependencies:
      tslib: 2.8.1

-  safe-buffer@5.2.1: {}
+  safe-buffer@5.2.1:
+    optional: true

  sass@1.93.2:
    dependencies:
@ -15335,10 +15327,6 @@ snapshots:

  semver@7.7.4: {}

-  serialize-javascript@6.0.2:
-    dependencies:
-      randombytes: 2.1.0
-
  seroval-plugins@1.5.0(seroval@1.5.0):
    dependencies:
      seroval: 1.5.0
@ -15681,12 +15669,11 @@ snapshots:
      minizlib: 3.1.0
      yallist: 5.0.0

-  terser-webpack-plugin@5.3.16(esbuild@0.27.2)(uglify-js@3.19.3)(webpack@5.104.1(esbuild@0.27.2)(uglify-js@3.19.3)):
+  terser-webpack-plugin@5.3.17(esbuild@0.27.2)(uglify-js@3.19.3)(webpack@5.104.1(esbuild@0.27.2)(uglify-js@3.19.3)):
    dependencies:
      '@jridgewell/trace-mapping': 0.3.31
      jest-worker: 27.5.1
      schema-utils: 4.3.3
-      serialize-javascript: 6.0.2
      terser: 5.46.0
      webpack: 5.104.1(esbuild@0.27.2)(uglify-js@3.19.3)
    optionalDependencies:
@ -16249,7 +16236,7 @@ snapshots:
      neo-async: 2.6.2
      schema-utils: 4.3.3
      tapable: 2.3.0
-      terser-webpack-plugin: 5.3.16(esbuild@0.27.2)(uglify-js@3.19.3)(webpack@5.104.1(esbuild@0.27.2)(uglify-js@3.19.3))
+      terser-webpack-plugin: 5.3.17(esbuild@0.27.2)(uglify-js@3.19.3)(webpack@5.104.1(esbuild@0.27.2)(uglify-js@3.19.3))
      watchpack: 2.5.1
      webpack-sources: 3.3.4
    transitivePeerDependencies: