From a495db402730c927be0cd25a5ad04f6fcebd02d8 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Thu, 2 Jun 2022 22:11:44 +0000
Subject: [PATCH] fix: upgrade dompurify from 2.3.6 to 2.3.7

Snyk has created this PR to upgrade dompurify from 2.3.6 to 2.3.7.

See this package in npm:


See this project in Snyk:
https://app.snyk.io/org/auth0-sdks/project/42f9738c-6d9c-4c05-9008-8b4db478c2af?utm_source=github&utm_medium=referral&page=upgrade-pr
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 0ad59d660..bbc1e361e 100644
--- a/package.json
+++ b/package.json
@@ -109,7 +109,7 @@
     "auth0-password-policies": "^1.0.2",
     "blueimp-md5": "^2.19.0",
     "classnames": "^2.3.1",
-    "dompurify": "^2.3.5",
+    "dompurify": "^2.3.7",
     "immutable": "^3.7.3",
     "jsonp": "^0.2.1",
     "node-fetch": "^2.6.7",
diff --git a/yarn.lock b/yarn.lock
index f58661da6..3d045b37a 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -3394,10 +3394,10 @@ domhandler@^4.0.0, domhandler@^4.2.0:
   dependencies:
     domelementtype "^2.2.0"
 
-dompurify@^2.3.5:
-  version "2.3.6"
-  resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.3.6.tgz#2e019d7d7617aacac07cbbe3d88ae3ad354cf875"
-  integrity sha512-OFP2u/3T1R5CEgWCEONuJ1a5+MFKnOYpkywpUSxv/dj1LeBT1erK+JwM7zK0ROy2BRhqVCf0LRw/kHqKuMkVGg==
+dompurify@^2.3.7:
+  version "2.3.8"
+  resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.3.8.tgz#224fe9ae57d7ebd9a1ae1ac18c1c1ca3f532226f"
+  integrity sha512-eVhaWoVibIzqdGYjwsBWodIQIaXFSB+cKDf4cfxLMsK0xiud6SE+/WCVx/Xw/UwQsa4cS3T2eITcdtmTg2UKcw==
 
 domutils@^2.5.2, domutils@^2.6.0, domutils@^2.7.0:
   version "2.8.0"