Upgrade `refractor` to remove `prismjs` vulnerability

## Description

We previously already updated our direct dependency of `prismjs` ([PR](https://github.com/elastic/eui/pull/8506)) but wealso need to upgrade our `refractor` dependency from the current version `3.6.0` to at least `4.9.0` ([release changelog](https://github.com/wooorm/refractor/releases/tag/4.9.0)) to ensure the included `prismjs` dependency is at `1.30.0` ([release](https://github.com/elastic/eui/pull/8506)) which includes a fix for an "Arbitrary Code Injection vulnerability" ([DOM Clobbering vulnerability](https://gist.github.com/jackfromeast/aeb128e44f05f95828a1a824708df660)).





Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Upgrade `refractor` to remove `prismjs` vulnerability #8616

Description

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Upgrade refractor to remove prismjs vulnerability #8616

Description

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

Upgrade `refractor` to remove `prismjs` vulnerability #8616