From a915d7d6417bdf0bd595c9cd3ba8b688885906dc Mon Sep 17 00:00:00 2001
From: LeSuisse <thomas@gerbet.me>
Date: Thu, 10 Dec 2020 01:06:00 +0100
Subject: [PATCH] chore(deps): dompurify@^2.2.3 (#6679)

This contribution allows the installation of DOMPurify ^2.2.3 instead of
locking to the specific 2.2.2. The version 2.2.2 has a known security issue [0].
---
 package-lock.json | 6 +++---
 package.json      | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 066d5e16..17c14997 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -11142,9 +11142,9 @@
       }
     },
     "dompurify": {
-      "version": "2.2.2",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.2.2.tgz",
-      "integrity": "sha512-BsGR4nDLaC5CNBnyT5I+d5pOeaoWvgVeg6Gq/aqmKYWMPR07131u60I80BvExLAJ0FQEIBQ1BTicw+C5+jOyrg=="
+      "version": "2.2.3",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.2.3.tgz",
+      "integrity": "sha512-8Hv7Q0FuwD9rWoB6qI2eZsfKbGXfoUVuGHHrE15vgk4ReOKwOkSgbqb2OMFtc0d5besOEkoLkcyuV10zQ2X5gw=="
     },
     "domutils": {
       "version": "1.5.1",
diff --git a/package.json b/package.json
index b68d82a1..d1dd9da5 100644
--- a/package.json
+++ b/package.json
@@ -66,7 +66,7 @@
     "classnames": "^2.2.6",
     "css.escape": "1.5.1",
     "deep-extend": "0.6.0",
-    "dompurify": "=2.2.2",
+    "dompurify": "^2.2.3",
     "ieee754": "^1.1.13",
     "immutable": "^3.x.x",
     "js-file-download": "^0.4.1",