build(deps): bump tar and ls-engines#909
Conversation
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|
60b09ce to
860e008
Compare
0694f91 to
dce3bc0
Compare
Bumps [tar](https://github.com/isaacs/node-tar) to 7.5.19 and updates ancestor dependency [ls-engines](https://github.com/ljharb/ls-engines). These dependencies need to be updated together. Updates `tar` from 7.4.3 to 7.5.19 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v7.4.3...v7.5.19) Updates `ls-engines` from 0.9.4 to 0.10.1 - [Changelog](https://github.com/ljharb/ls-engines/blob/main/CHANGELOG.md) - [Commits](ljharb/ls-engines@v0.9.4...v0.10.1) --- updated-dependencies: - dependency-name: ls-engines dependency-version: 0.10.0 dependency-type: direct:development - dependency-name: tar dependency-version: 7.5.16 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
dce3bc0 to
2ec7f3b
Compare
Bumps tar to 7.5.19 and updates ancestor dependency ls-engines. These dependencies need to be updated together.
Updates
tarfrom 7.4.3 to 7.5.19Changelog
Sourced from tar's changelog.
... (truncated)
Commits
be440da7.5.192812e93add maxDecompressionRatio guard against explosive decompression9ecd4d27.5.189e78bf0refuse to let header size be less than 0e02a4e9pax: parse values according to known types9cbdb317.5.177a635c2terminate pax strings on nul bytescf213387.5.1621a8220do not apply PAX header fields to meta entries52632cfupdate project depsMaintainer changes
This version was pushed to npm by isaacs, a new releaser for tar since your current version.
Install script changes
This version adds
preparescript that runs during installation. Review the package contents before updating.Updates
ls-enginesfrom 0.9.4 to 0.10.1Changelog
Sourced from ls-engines's changelog.
Commits
5c0e7e3v0.10.1ae9bf18[meta] exclude some files from the publish301a113[Fix] use valid subpath imports specifier for node <24523e825[eslint] fix errors3c8a241[Dev Deps] updateeslint0ceb848[actions] update workflowsafa5e63[Deps] updatepargs,semver7366498[Tests] updatetape12170a9[Deps] updatepargs13ff435[New] add types