Skip to content

Bump tar-fs from 2.1.1 to 2.1.4 in /project-templates/node-json-theia#220

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/project-templates/node-json-theia/tar-fs-2.1.4
Closed

Bump tar-fs from 2.1.1 to 2.1.4 in /project-templates/node-json-theia#220
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/npm_and_yarn/project-templates/node-json-theia/tar-fs-2.1.4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Sep 24, 2025

Copy link
Copy Markdown
Contributor

Bumps tar-fs from 2.1.1 to 2.1.4.

Commits

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Sep 24, 2025
@tortmayr

tortmayr commented Jun 9, 2026

Copy link
Copy Markdown
Contributor

@dependabot rebase

Bumps [tar-fs](https://github.com/mafintosh/tar-fs) from 2.1.1 to 2.1.4.
- [Commits](mafintosh/tar-fs@v2.1.1...v2.1.4)

---
updated-dependencies:
- dependency-name: tar-fs
  dependency-version: 2.1.4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/npm_and_yarn/project-templates/node-json-theia/tar-fs-2.1.4 branch from 563f40f to ba3c799 Compare June 9, 2026 06:03
tortmayr added a commit that referenced this pull request Jun 9, 2026
Regenerate the affected yarn.lock files so all transitive/in-range
dependencies flagged by the open Dependabot PRs are bumped to their
patched (latest in-range) versions, and prune the duplicate/orphan
lock entries left behind by the partial consolidation in #262.

Updated packages (>= the version Dependabot requested):
- handlebars 4.7.9, yaml 2.9.0, flatted 3.4.2, diff 4.0.4/5.2.2,
  picomatch 2.3.2, multer 2.1.1, socket.io-parser 4.2.6,
  basic-ftp 5.3.1 (workflow / project-templates/*)
- dompurify 3.4.8, tar-fs 2.1.4 (node-json-theia)
- axios 1.17.0, qs 6.15.2, ajv 6.15.0, underscore 1.13.8,
  serialize-javascript 6.0.2, webpack 5.107.2 (node-json-vscode)
- ajv 6.15.0, socket.io-parser 4.2.6 (java-emf-theia)
- webpack 5.107.2 (java-emf-eclipse, node-json-theia)

Supersedes #220-#231, #234-#259. All five lockfiles verified with
`yarn install --frozen-lockfile`.
@tortmayr

tortmayr commented Jun 9, 2026

Copy link
Copy Markdown
Contributor

@dependabot rebase

@dependabot @github

dependabot Bot commented on behalf of github Jun 9, 2026

Copy link
Copy Markdown
Contributor Author

Looks like tar-fs is up-to-date now, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 9, 2026
@dependabot dependabot Bot deleted the dependabot/npm_and_yarn/project-templates/node-json-theia/tar-fs-2.1.4 branch June 9, 2026 08:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant