chore(deps): bump dompurify from 3.3.1 to 3.3.2 in /frontend (#874)

Security fix: XSS bypass via jsdom raw-text tag parsing,
prototype pollution with custom elements, and lenient config
parsing in _isValidAttribute.

Supersedes #872

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Bowl42
2026-03-06 12:46:57 +08:00
committed by GitHub
parent e81d46262d
commit 635e0f4456
2 changed files with 7 additions and 6 deletions

View File

@@ -29,7 +29,7 @@
"@wangeditor/editor": "^5.1.23",
"@wangeditor/editor-for-vue": "^5.1.12",
"axios": "^1.13.6",
"dompurify": "^3.3.1",
"dompurify": "^3.3.2",
"jszip": "^3.10.1",
"mail-parser-wasm": "^0.2.1",
"naive-ui": "^2.43.2",