From 074a4916090438a0d0d1d4907597250a7b6f58c2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 28 Mar 2026 05:45:22 +0000
Subject: [PATCH] Bump dompurify from 2.5.4 to 3.3.2

Bumps [dompurify](https://github.com/cure53/DOMPurify) from 2.5.4 to 3.3.2.
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](https://github.com/cure53/DOMPurify/compare/2.5.4...3.3.2)

---
updated-dependencies:
- dependency-name: dompurify
  dependency-version: 3.3.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 ghostly-engine/package.json |  2 +-
 pnpm-lock.yaml              | 19 ++++++++++++++-----
 2 files changed, 15 insertions(+), 6 deletions(-)

diff --git a/ghostly-engine/package.json b/ghostly-engine/package.json
index db44097..ca66eb7 100644
--- a/ghostly-engine/package.json
+++ b/ghostly-engine/package.json
@@ -42,7 +42,7 @@
         "@divine/headers": "^2.0.0",
         "@divine/uri": "~0.4.1",
         "csso": "^4.2.0",
-        "dompurify": "^2.5.4",
+        "dompurify": "^3.3.2",
         "hast-util-from-string": "^1.0.4",
         "hast-util-has-property": "^1.0.4",
         "hast-util-is-css-link": "^1.0.5",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index a511e8d..9a2337e 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -94,8 +94,8 @@ importers:
         specifier: ^4.2.0
         version: 4.2.0
       dompurify:
-        specifier: ^2.5.4
-        version: 2.5.4
+        specifier: ^3.3.2
+        version: 3.3.2
       hast-util-from-string:
         specifier: ^1.0.4
         version: 1.0.4
@@ -648,6 +648,9 @@ packages:
   '@types/trusted-types@2.0.2':
     resolution: {integrity: sha512-F5DIZ36YVLE+PN+Zwws4kJogq47hNgX3Nx6WyDJ3kcplxyke3XIzB8uK5n/Lpm1HBsbGzd6nmGehL8cPekP+Tg==}
 
+  '@types/trusted-types@2.0.7':
+    resolution: {integrity: sha512-ScaPdn1dQczgbl0QFTeTOmVHFULt394XJgOQNoyVhZ6r2vLnMLJfBPd53SB52T/3G36VI1/g2MZaX0cwDuXsfw==}
+
   '@types/uglify-js@3.13.1':
     resolution: {integrity: sha512-O3MmRAk6ZuAKa9CHgg0Pr0+lUOqoMLpc9AS4R8ano2auvsg7IE8syF3Xh/NPr26TWklxYcqoEEFdzLLs1fV9PQ==}
 
@@ -1115,8 +1118,9 @@ packages:
     resolution: {integrity: sha512-fC0aXNQXqKSFTr2wDNZDhsEYjCiYsDWl3D01kwt25hm1YIPyDGHvvi3rw+PLqHAl/m71MaiF7d5zvBr0p5UB2g==}
     engines: {node: '>= 4'}
 
-  dompurify@2.5.4:
-    resolution: {integrity: sha512-l5NNozANzaLPPe0XaAwvg3uZcHtDBnziX/HjsY1UcDj1MxTK8Dd0Kv096jyPK5HRzs/XM5IMj20dW8Fk+HnbUA==}
+  dompurify@3.3.2:
+    resolution: {integrity: sha512-6obghkliLdmKa56xdbLOpUZ43pAR6xFy1uOrxBaIDjT+yaRuuybLjGS9eVBoSR/UPU5fq3OXClEHLJNGvbxKpQ==}
+    engines: {node: '>=20'}
 
   domutils@2.8.0:
     resolution: {integrity: sha512-w96Cjofp72M5IIhpjgobBimYEfoPjx1Vx0BSX9P30WBdZW2WIKU0T1Bd0kz2eNZ9ikjKgHbEyKx8BB6H1L3h3A==}
@@ -3430,6 +3434,9 @@ snapshots:
 
   '@types/trusted-types@2.0.2': {}
 
+  '@types/trusted-types@2.0.7':
+    optional: true
+
   '@types/uglify-js@3.13.1':
     dependencies:
       source-map: 0.6.1
@@ -3898,7 +3905,9 @@ snapshots:
     dependencies:
       domelementtype: 2.2.0
 
-  dompurify@2.5.4: {}
+  dompurify@3.3.2:
+    optionalDependencies:
+      '@types/trusted-types': 2.0.7
 
   domutils@2.8.0:
     dependencies: