From eec1dfd7a2f4f45c8368ab8f7b32e203056511af Mon Sep 17 00:00:00 2001
From: Miki <miki@amazon.com>
Date: Wed, 25 Sep 2024 14:22:21 -0700
Subject: [PATCH 1/4] [CVE-2024-45801] Bump `dompurify` from 2.4.7 to 2.5.6
 (#444)

Signed-off-by: Miki <miki@amazon.com>
---
 yarn.lock | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/yarn.lock b/yarn.lock
index c68b3eb5..6b19d99e 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -2503,9 +2503,9 @@ domhandler@^5.0, domhandler@^5.0.2, domhandler@^5.0.3:
     domelementtype "^2.3.0"
 
 dompurify@^2.2.0:
-  version "2.4.7"
-  resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.4.7.tgz#277adeb40a2c84be2d42a8bcd45f582bfa4d0cfc"
-  integrity sha512-kxxKlPEDa6Nc5WJi+qRgPbOAbgTpSULL+vI3NUXsZMlkJxTqYI9wg5ZTay2sFrdZRWHPWNi+EdAhcJf81WtoMQ==
+  version "2.5.6"
+  resolved "https://registry.yarnpkg.com/dompurify/-/dompurify-2.5.6.tgz#8402b501611eaa7fb3786072297fcbe2787f8592"
+  integrity sha512-zUTaUBO8pY4+iJMPE1B9XlO2tXVYIcEA4SNGtvDELzTSCQO7RzH+j7S180BmhmJId78lqGU2z19vgVx2Sxs/PQ==
 
 dompurify@^3.0.11:
   version "3.1.6"

From 43f53fc350518205b0f5b468ce71b2f56ae3f131 Mon Sep 17 00:00:00 2001
From: "opensearch-trigger-bot[bot]"
 <98922864+opensearch-trigger-bot[bot]@users.noreply.github.com>
Date: Thu, 26 Sep 2024 13:05:56 -0400
Subject: [PATCH 2/4] Bump path-to-regexp to 1.9.0 (#432) (#434)

* Bump path-to-regexp to 1.9.0



* update release notes



* revert package.json changes



---------


(cherry picked from commit 583a130040983fb80068dd01b0cdf50c2b15c5a6)

Signed-off-by: Shenoy Pratik <sgguruda@amazon.com>
Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
---
 ...nsearch-dashboards-reporting.release-notes-2.17.0.0.md | 3 ++-
 yarn.lock                                                 | 8 ++++----
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/release-notes/opensearch-dashboards-reporting.release-notes-2.17.0.0.md b/release-notes/opensearch-dashboards-reporting.release-notes-2.17.0.0.md
index 02624011..d6a9caf1 100644
--- a/release-notes/opensearch-dashboards-reporting.release-notes-2.17.0.0.md
+++ b/release-notes/opensearch-dashboards-reporting.release-notes-2.17.0.0.md
@@ -9,4 +9,5 @@ Compatible with OpenSearch and OpenSearch Dashboards Version 2.17.0
 
 ### Bug Fixes
 * [Bugfix] Update UI and handle new navigation ([#416](https://github.com/opensearch-project/dashboards-reporting/pull/416))
-* [Bug] Remove unused import  ([#419](https://github.com/opensearch-project/dashboards-reporting/pull/419))
\ No newline at end of file
+* [Bug] Remove unused import  ([#419](https://github.com/opensearch-project/dashboards-reporting/pull/419))
+* Bump path-to-regexp to 1.9.0 ([#432](https://github.com/opensearch-project/dashboards-reporting/pull/432))
diff --git a/yarn.lock b/yarn.lock
index 6b19d99e..ebff2899 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -4943,10 +4943,10 @@ path-parse@^1.0.7:
   resolved "https://registry.yarnpkg.com/path-parse/-/path-parse-1.0.7.tgz#fbc114b60ca42b30d9daf5858e4bd68bbedb6735"
   integrity sha512-LDJzPVEEEPR+y48z93A0Ed0yXb8pAByGWo/k5YYdYgpY2/2EsOsksJrq7lOHxryrVOn1ejG6oAp8ahvOIQD8sw==
 
-path-to-regexp@^1.7.0, path-to-regexp@^1.8.0:
-  version "1.8.0"
-  resolved "https://registry.yarnpkg.com/path-to-regexp/-/path-to-regexp-1.8.0.tgz#887b3ba9d84393e87a0a0b9f4cb756198b53548a"
-  integrity sha512-n43JRhlUKUAlibEJhPeir1ncUID16QnEjNpwzNdO3Lm4ywrBpBZ5oLD0I6br9evr1Y9JTqwRtAh7JLoOzAQdVA==
+path-to-regexp@^1.7.0, path-to-regexp@^1.8.0, path-to-regexp@^1.9.0:
+  version "1.9.0"
+  resolved "https://registry.yarnpkg.com/path-to-regexp/-/path-to-regexp-1.9.0.tgz#5dc0753acbf8521ca2e0f137b4578b917b10cf24"
+  integrity sha512-xIp7/apCFJuUHdDLWe8O1HIkb0kQrOMb/0u6FXQjemHn/ii5LrIzU6bdECnsiTF/GjZkMEKg1xdiZwNqDYlZ6g==
   dependencies:
     isarray "0.0.1"
 

From b252bf290dbe8af6b5651bd635ec2641b299a14a Mon Sep 17 00:00:00 2001
From: Jialiang Liang <jiallian@amazon.com>
Date: Fri, 27 Sep 2024 10:34:30 -0700
Subject: [PATCH 3/4] Add release note for 2.17.1 (#450)

Signed-off-by: Ryan Liang <jiallian@amazon.com>
---
 ...pensearch-dashboards-reporting.release-notes-2.17.1.0.md | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md

diff --git a/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md b/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md
new file mode 100644
index 00000000..93d8a6e5
--- /dev/null
+++ b/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md
@@ -0,0 +1,6 @@
+## Version 2.17.1.0 Release Notes
+
+Compatible with OpenSearch and OpenSearch Dashboards Version 2.17.1
+
+### Enhancements
+* [CVE-2024-45801] Bump dompurify from 2.4.7 to 2.5.6 ([#446](https://github.com/opensearch-project/dashboards-reporting/pull/444))

From 747608d2eb378d687dfa7637b5a3e211e50f5105 Mon Sep 17 00:00:00 2001
From: Jialiang Liang <jiallian@amazon.com>
Date: Fri, 27 Sep 2024 13:53:53 -0700
Subject: [PATCH 4/4] Fix the release note for 2.17.1 (#453)

Signed-off-by: Ryan Liang <jiallian@amazon.com>
---
 .../opensearch-dashboards-reporting.release-notes-2.17.1.0.md   | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md b/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md
index 93d8a6e5..e7c7d231 100644
--- a/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md
+++ b/release-notes/opensearch-dashboards-reporting.release-notes-2.17.1.0.md
@@ -2,5 +2,5 @@
 
 Compatible with OpenSearch and OpenSearch Dashboards Version 2.17.1
 
-### Enhancements
+### Maintenance
 * [CVE-2024-45801] Bump dompurify from 2.4.7 to 2.5.6 ([#446](https://github.com/opensearch-project/dashboards-reporting/pull/444))