[Snyk] Security upgrade @docusaurus/preset-classic from 3.1.1 to 3.5.0

[guycherno]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • website/package.json
  • website/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	601/1000 Why? Recently disclosed, Has a fix available, CVSS 6.3	Cross-site Scripting (XSS) SNYK-JS-COOKIE-8163060	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @docusaurus/preset-classic

The new version differs by 250 commits.

• cb5829f v3.5.0
• a19d54f Merge remote-tracking branch 'origin/slorber/docusaurus-v3.5' into slorber/docusaurus-v3.5
• ea49177 3.5 docs
• 55a58ee changelog
• 8f8f7f2 Merge branch 'main' into slorber/docusaurus-v3.5
• a096bbc feat(blog): add `onUntruncatedBlogPosts` blog options (outposts: allow force refresh goauthentik/authentik#10375)
• 2611aa1 refactor: apply lint autofix
• f9e5adb v3.5 blog post
• c3af215 v3.5 blog post
• af24976 v3.5 blog post
• 2028ca4 v3.5 blog post
• f43be85 fix(translations): fix wrong Estonian (et) translations and typos (core: bump google-api-python-client from 2.135.0 to 2.136.0 goauthentik/authentik#10344)
• a2e30be fix(search): fix algolia search ignore ctrl + F in search input (Can't send emails with SMTP - Getting Authentication Failed goauthentik/authentik#10342)
• 44ddada fix(docs): the _category_.json description attribute should display on generated index pages (core, web: update translations goauthentik/authentik#10324)
• 95ab9f8 feat(theme): show unlisted/draft banners in dev mode (sources/oauth: fix link not being saved (cherry-pick #10374) goauthentik/authentik#10376)
• c58fcbd feat(ci): continuous releases for main and PRs with pkg.pr.new (website: bump async and docusaurus-plugin-openapi-docs in /website goauthentik/authentik#10369)
• 087a329 fix(cli): Fix bad docusaurus CLI behavior on for --version, -V, --help, -h (core: return relative app launch URL to improve app list performance goauthentik/authentik#10368)
• 7be1fea feat(blog): add feed xlst options to render beautiful RSS and Atom feeds (Worker won't reconnect to Redis after a connection drop goauthentik/authentik#9252)
• 08a893a chore: add prettier-xml plugin (core: bump pydantic from 2.8.0 to 2.8.2 goauthentik/authentik#10364)
• f356e29 feat(blog): authors page (OAuth2/OpenID custom mapping can't serialize python set to JSON goauthentik/authentik#10216)
• 50f9fce docs: rename @ getcanary/docusaurus-pagefind in docs (web: bump the wdio group in /tests/wdio with 2 updates goauthentik/authentik#10361)
• 347070b fix(translations): Fix and Improve Spanish translations (ci: bump docker/setup-qemu-action from 3.0.0 to 3.1.0 goauthentik/authentik#10360)
• 95990c6 docs: Add @ getcanary/docusaurus-pagefind in docs (certbot / letsencrypt certificates imported by worker not showing in system brands goauthentik/authentik#10345)
• 40676cd chore(deps): update infima npm dependency to version 0.2.0-alpha.44 (core: bump twilio from 9.2.2 to 9.2.3 goauthentik/authentik#10343)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Cross-site Scripting (XSS)