fix(deps): update dependency tar to v7.5.7 [security] (#17104)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-21 03:30:42 +00:00 · 2026-01-29 18:18:34 +09:00
parent 97312b97f8
commit d2154214ba
2 changed files with 7 additions and 7 deletions
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -32,8 +32,8 @@ importers:
        specifier: 8.5.6
        version: 8.5.6
      tar:
-        specifier: 7.5.6
-        version: 7.5.6
+        specifier: 7.5.7
+        version: 7.5.7
      terser:
        specifier: 5.46.0
        version: 5.46.0
@@ -10178,8 +10178,8 @@ packages:
    engines: {node: '>=10'}
    deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exhorbitant rates) by contacting i@izs.me

-  tar@7.5.6:
-    resolution: {integrity: sha512-xqUeu2JAIJpXyvskvU3uvQW8PAmHrtXp2KDuMJwQqW8Sqq0CaZBAQ+dKS3RBXVhU4wC5NjAdKrmh84241gO9cA==}
+  tar@7.5.7:
+    resolution: {integrity: sha512-fov56fJiRuThVFXD6o6/Q354S7pnWMJIVlDBYijsTNx6jKSE4pvrDTs6lUnmGvNyfJwFQQwWy3owKz1ucIhveQ==}
    engines: {node: '>=18'}
    deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exhorbitant rates) by contacting i@izs.me

@@ -20126,7 +20126,7 @@ snapshots:
      nopt: 9.0.0
      proc-log: 6.1.0
      semver: 7.7.3
-      tar: 7.5.6
+      tar: 7.5.7
      tinyglobby: 0.2.15
      which: 6.0.0
    transitivePeerDependencies:
@@ -21992,7 +21992,7 @@ snapshots:
      yallist: 4.0.0
    optional: true

-  tar@7.5.6:
+  tar@7.5.7:
    dependencies:
      '@isaacs/fs-minipass': 4.0.1
      chownr: 3.0.0