From 35fb6f01fe1a2a66ef4c9493c730a09f4c011b18 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 21 Jan 2026 21:19:28 +0000 Subject: [PATCH] Bump tar in the npm_and_yarn group across 1 directory Bumps the npm_and_yarn group with 1 update in the / directory: [tar](https://github.com/isaacs/node-tar). Updates `tar` from 7.5.3 to 7.5.4 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/isaacs/node-tar/compare/v7.5.3...v7.5.4) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.4 dependency-type: direct:production dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] --- cli/package.json | 2 +- package-lock.json | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/cli/package.json b/cli/package.json index 1d820a81f9c..28f4cec5a8f 100644 --- a/cli/package.json +++ b/cli/package.json @@ -26,7 +26,7 @@ "pacote": "^21.0.0", "proc-log": "^6.0.0", "semver": "^7.5.4", - "tar": "^7.0.1", + "tar": "^7.5.4", "yaml": "^2.3.4" }, "devDependencies": { diff --git a/package-lock.json b/package-lock.json index 73f89db4066..39a914091bc 100644 --- a/package-lock.json +++ b/package-lock.json @@ -94,7 +94,7 @@ "pacote": "^21.0.0", "proc-log": "^6.0.0", "semver": "^7.5.4", - "tar": "^7.0.1", + "tar": "^7.5.4", "yaml": "^2.3.4" }, "devDependencies": { @@ -42957,9 +42957,9 @@ } }, "node_modules/tar": { - "version": "7.5.3", - "resolved": "https://registry.npmjs.org/tar/-/tar-7.5.3.tgz", - "integrity": "sha512-ENg5JUHUm2rDD7IvKNFGzyElLXNjachNLp6RaGf4+JOgxXHkqA+gq81ZAMCUmtMtqBsoU62lcp6S27g1LCYGGQ==", + "version": "7.5.4", + "resolved": "https://registry.npmjs.org/tar/-/tar-7.5.4.tgz", + "integrity": "sha512-AN04xbWGrSTDmVwlI4/GTlIIwMFk/XEv7uL8aa57zuvRy6s4hdBed+lVq2fAZ89XDa7Us3ANXcE3Tvqvja1kTA==", "license": "BlueOak-1.0.0", "dependencies": { "@isaacs/fs-minipass": "^4.0.0",