diff --git a/package-lock.json b/package-lock.json
index d4e6d46e5..e4386c3d2 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -7255,9 +7255,9 @@
       }
     },
     "dompurify": {
-      "version": "2.2.8",
-      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.2.8.tgz",
-      "integrity": "sha512-9H0UL59EkDLgY3dUFjLV6IEUaHm5qp3mxSqWw7Yyx4Zhk2Jn2cmLe+CNPP3xy13zl8Bqg+0NehQzkdMoVhGRww=="
+      "version": "2.5.4",
+      "resolved": "https://registry.npmjs.org/dompurify/-/dompurify-2.5.4.tgz",
+      "integrity": "sha512-l5NNozANzaLPPe0XaAwvg3uZcHtDBnziX/HjsY1UcDj1MxTK8Dd0Kv096jyPK5HRzs/XM5IMj20dW8Fk+HnbUA=="
     },
     "domutils": {
       "version": "1.7.0",
@@ -13703,17 +13703,17 @@
       "dev": true,
       "requires": {
         "chokidar": "^2.0.4",
-        "colors": "^1.4.0",
+        "colors": "latest",
         "connect": "^3.6.6",
-        "cors": "^2.8.5",
+        "cors": "latest",
         "event-stream": "3.3.4",
         "faye-websocket": "0.11.x",
         "http-auth": "3.1.x",
         "morgan": "^1.9.1",
-        "object-assign": "^4.1.1",
-        "opn": "^6.0.0",
-        "proxy-middleware": "^0.15.0",
-        "send": "^0.17.1",
+        "object-assign": "latest",
+        "opn": "latest",
+        "proxy-middleware": "latest",
+        "send": "latest",
         "serve-index": "^1.9.1"
       },
       "dependencies": {
diff --git a/package.json b/package.json
index f48bca253..7c87b9a52 100644
--- a/package.json
+++ b/package.json
@@ -54,7 +54,7 @@
     "*.js": "eslint --fix"
   },
   "dependencies": {
-    "dompurify": "^2.2.8",
+    "dompurify": "^2.5.4",
     "marked": "^1.2.9",
     "medium-zoom": "^1.0.6",
     "opencollective-postinstall": "^2.0.2",