Commit 864f4dc
fix(deps): bump tar override to 7.5.10 to patch GHSA-qffp-2rhf-9h96 (#55)
Adds tar@7.5.10 to npm overrides. Transitive dep via
electron-builder > app-builder-lib > tar. Hardlink path traversal
via drive-relative linkpath (high severity).
Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>1 parent 1e1d6de commit 864f4dc
2 files changed
Lines changed: 5 additions & 4 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
46 | 46 | | |
47 | 47 | | |
48 | 48 | | |
49 | | - | |
| 49 | + | |
| 50 | + | |
50 | 51 | | |
51 | 52 | | |
52 | 53 | | |
| |||
0 commit comments