diff --git a/api/package.json b/api/package.json
index d797ceb132..63cb015406 100644
--- a/api/package.json
+++ b/api/package.json
@@ -161,7 +161,7 @@
 		"rate-limiter-flexible": "4.0.1",
 		"rollup": "4.10.0",
 		"samlify": "2.8.10",
-		"sanitize-html": "2.11.0",
+		"sanitize-html": "2.12.0",
 		"sharp": "0.33.2",
 		"snappy": "7.2.2",
 		"stream-json": "1.8.0",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 2c42d323d2..fe5a6cff42 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -327,8 +327,8 @@ importers:
         specifier: 2.8.10
         version: 2.8.10
       sanitize-html:
-        specifier: 2.11.0
-        version: 2.11.0
+        specifier: 2.12.0
+        version: 2.12.0
       sharp:
         specifier: 0.33.2
         version: 0.33.2
@@ -17610,15 +17610,15 @@ packages:
       xpath: 0.0.32
     dev: false
 
-  /sanitize-html@2.11.0:
-    resolution: {integrity: sha512-BG68EDHRaGKqlsNjJ2xUB7gpInPA8gVx/mvjO743hZaeMCZ2DwzW7xvsqZ+KNU4QKwj86HJ3uu2liISf2qBBUA==}
+  /sanitize-html@2.12.0:
+    resolution: {integrity: sha512-2pq2H0b4npSaMPrRuauYVml1Q3BzaL67Y8WDOk9gsqoS8gS+VFZcgwF1ITJbfOCHgw1sUQMG14KwXyVE+75tSg==}
     dependencies:
       deepmerge: 4.3.1
       escape-string-regexp: 4.0.0
       htmlparser2: 8.0.2
       is-plain-object: 5.0.0
       parse-srcset: 1.0.2
-      postcss: 8.4.32
+      postcss: 8.4.35
     dev: false
 
   /sass@1.71.1: