refactor: Bump tar and npm#897
Conversation
|
@coderabbitai review |
✅ Action performedReview finished.
|
Bumps [tar](https://github.com/isaacs/node-tar) and [npm](https://github.com/npm/cli). These dependencies needed to be updated together. Updates `tar` from 7.5.13 to 7.5.20 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](isaacs/node-tar@v7.5.13...v7.5.20) Updates `npm` from 11.12.1 to 11.18.0 - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/v11.18.0/CHANGELOG.md) - [Commits](npm/cli@v11.12.1...v11.18.0) --- updated-dependencies: - dependency-name: npm dependency-version: 11.17.0 dependency-type: indirect - dependency-name: tar dependency-version: 7.5.16 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
5a69d18 to
5c230a6
Compare
|
No actionable comments were generated in the recent review. 🎉 ℹ️ Recent review info⚙️ Run configurationConfiguration used: Organization UI Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (1)
📝 WalkthroughWalkthroughThe lockfile updates npm from 11.12.1 to 11.18.0, refreshes its bundled dependency tree, and bumps top-level tar from 7.5.13 to 7.5.20. Changesnpm lockfile refresh
Estimated code review effort: 1 (Trivial) | ~5 minutes Possibly related PRs
🚥 Pre-merge checks | ✅ 7✅ Passed checks (7 passed)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
@coderabbitai review |
✅ Action performedReview finished.
|
Bumps tar and npm. These dependencies needed to be updated together.
Updates
tarfrom 7.5.13 to 7.5.20Commits
ebbb7207.5.202f27196fix: fully disable and dispose of unzip when aborting parserbe440da7.5.192812e93add maxDecompressionRatio guard against explosive decompression9ecd4d27.5.189e78bf0refuse to let header size be less than 0e02a4e9pax: parse values according to known types9cbdb317.5.177a635c2terminate pax strings on nul bytescf213387.5.16Updates
npmfrom 11.12.1 to 11.18.0Release notes
Sourced from npm's releases.
... (truncated)
Changelog
Sourced from npm's changelog.
... (truncated)
Commits
a9c8c06chore: release 11.18.0f79b37fchore: dev dependency updates54656b6deps: undici@6.27.031c4773deps: brace-expansion@5.0.7e773c77deps: tar@7.5.19f05f6afdeps: semver@7.8.53021ad6feat(arborist): extend replace-registry-host with URL prefix matching (#6110)...598ffdbfix(sbom): percent-encode vcs_url qualifier in generated purls (#9693)f3f2465fix(exec): prevent shared binPaths pollution across workspace runs (#9692)05793d0fix: output all the required parameters for npm token list (#9691)Summary by CodeRabbit