From 5a8ce099cb665f3057ec27f61b72f583ad35b929 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Feb 2026 17:56:43 +0000 Subject: [PATCH] =?UTF-8?q?=F0=9F=A4=96=20Dep=20Updates:=20Bump=20libnpmpa?= =?UTF-8?q?ck=20from=209.0.9=20to=209.0.13?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [libnpmpack](https://github.com/npm/cli/tree/HEAD/workspaces/libnpmpack) from 9.0.9 to 9.0.13. - [Release notes](https://github.com/npm/cli/releases) - [Changelog](https://github.com/npm/cli/blob/latest/CHANGELOG.md) - [Commits](https://github.com/npm/cli/commits/libnpmpack-v9.0.13/workspaces/libnpmpack) --- updated-dependencies: - dependency-name: libnpmpack dependency-version: 9.0.13 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- package.json | 2 +- pnpm-lock.yaml | 66 ++++++++++++++++++++------------------------------ 2 files changed, 27 insertions(+), 41 deletions(-) diff --git a/package.json b/package.json index 5f44486..1f4557b 100644 --- a/package.json +++ b/package.json @@ -755,7 +755,7 @@ "has-flag": "5.0.1", "husky": "9.1.7", "libnpmexec": "^10.2.0", - "libnpmpack": "9.0.9", + "libnpmpack": "9.0.13", "lint-staged": "15.2.11", "magic-string": "0.30.17", "make-fetch-happen": "15.0.2", diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml index e05c43b..45cb31c 100644 --- a/pnpm-lock.yaml +++ b/pnpm-lock.yaml @@ -180,8 +180,8 @@ importers: specifier: ^10.2.0 version: 10.2.0(supports-color@10.0.0) libnpmpack: - specifier: 9.0.9 - version: 9.0.9(supports-color@10.0.0) + specifier: 9.0.13 + version: 9.0.13(supports-color@10.0.0) lint-staged: specifier: 15.2.11 version: 15.2.11(supports-color@10.0.0) @@ -2016,13 +2016,15 @@ packages: resolution: {integrity: sha512-XxwI8EOhVQgWp6iDL+3b0r86f4d6AX6zSU55HfB4ydCEuXLXc5FcYeOu+nnGftS4TEju/11rt4KJPTMgbfmv4A==} engines: {node: '>=10.13.0'} - glob@10.4.5: - resolution: {integrity: sha512-7Bv8RF0k6xjo7d4A/PxYLbUCfb6c+Vpd2/mB2yRDlew7Jb5hEXiCD9ibfO7wpk8i4sevK6DFny9h7EYbM3/sHg==} + glob@10.5.0: + resolution: {integrity: sha512-DfXN8DfhJ7NH3Oe7cFmu3NCu1wKbkReJ8TorzSAFbSKrlNaQSKfIzqYqVY8zlbs2NLBbWpRiU52GX2PbaBVNkg==} + deprecated: Old versions of glob are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me hasBin: true glob@11.0.3: resolution: {integrity: sha512-2Nim7dha1KVkaiF4q6Dj+ngPPMdfvLJEOpZk/jKiUAkqKebpGAWQXAq9z1xu9HKu5lWfqw/FASuccEjyznjPaA==} engines: {node: 20 || >=22} + deprecated: Old versions of glob are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me hasBin: true globals@14.0.0: @@ -2286,8 +2288,8 @@ packages: resolution: {integrity: sha512-9niBq6RIPpRcIMmT2tL8PnYnyv0GMmVRzYXVnv5qUZ4/z+JMYNSgWZMIetF8H2HAH7qsoAgkYN/CGvc90yUnhw==} engines: {node: ^20.17.0 || >=22.9.0} - libnpmpack@9.0.9: - resolution: {integrity: sha512-0UNr2ULi2QOo82EbOCIkn/tQJqD+AAa9iY3kd0kJN23HuwFmCQKba2A9Mep377uSc9VpcHIbUBRW8ROvkMkNlw==} + libnpmpack@9.0.13: + resolution: {integrity: sha512-5lMT9bOAC8WgYXNN7uibJe1U5jpAPR60EFPdCtGKYEDfvYrQMkO9Rkj5zUvvK7WC0VW5v8dxpxS4P47Yh4c/ug==} engines: {node: ^20.17.0 || >=22.9.0} lilconfig@3.1.3: @@ -2404,10 +2406,6 @@ packages: resolution: {integrity: sha512-j7U11C5HXigVuutxebFadoYBbd7VSdZWggSe64NVdvWNBqGAiXPL2QVCehjmw7lY1oF9gOllYbORh+hiNgfPgQ==} engines: {node: ^18.17.0 || >=20.5.0} - minipass-fetch@5.0.0: - resolution: {integrity: sha512-fiCdUALipqgPWrOVTz9fw0XhcazULXOSU6ie40DDbX1F49p1dBrSRBuswndTx1x3vEb/g0FT7vC4c4C2u/mh3A==} - engines: {node: ^20.17.0 || >=22.9.0} - minipass-fetch@5.0.1: resolution: {integrity: sha512-yHK8pb0iCGat0lDrs/D6RZmCdaBT64tULXjdxjSMAqoDi18Q3qKEUTHypHQZQd9+FYpIS+lkvpq6C/R6SbUeRw==} engines: {node: ^20.17.0 || >=22.9.0} @@ -2641,6 +2639,10 @@ packages: resolution: {integrity: sha512-VkndIv2fIB99swvQoA65bm+fsmt6UNdGeIB0oxBs+WhAhdh08QA04JXpI7rbB9r08/nkbysKoya9rtDERYOYMA==} engines: {node: '>=18'} + p-map@7.0.4: + resolution: {integrity: sha512-tkAQEw8ysMzmkhgw8k+1U/iPhWNhykKnSk4Rd5zLoPJCuJaGRPo6YposrZgaxHKzDHdDWWZvE/Sk7hsL2X/CpQ==} + engines: {node: '>=18'} + p-try@2.2.0: resolution: {integrity: sha512-R4nPAVTAU0B9D35/Gk3uJf/7XYbQcyohSKdvAxIRSNghFl4e71hVoGnBNQz9cWaXxO2I10KTC+3jMdvvoKw6dQ==} engines: {node: '>=6'} @@ -2992,14 +2994,12 @@ packages: tar@6.2.1: resolution: {integrity: sha512-DZ4yORTwrbTj/7MZYq2w+/ZFdI6OZ/f9SFHR+71gIVUZhOQPHzVCLpvRnPgyaMpfWxxk/4ONva3GQSyNIKRv6A==} engines: {node: '>=10'} + deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me tar@7.5.1: resolution: {integrity: sha512-nlGpxf+hv0v7GkWBK2V9spgactGOp0qvfWRxUMjqHyzrt3SgwE48DIv/FhqPHJYLHpgW1opq3nERbz5Anq7n1g==} engines: {node: '>=18'} - - tar@7.5.2: - resolution: {integrity: sha512-7NyxrTE4Anh8km8iEy7o0QYPs+0JKBTj5ZaqHg6B39erLg0qYXN3BijtShwbsNSvQ+LN75+KV+C4QR/f6Gwnpg==} - engines: {node: '>=18'} + deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me tar@7.5.7: resolution: {integrity: sha512-fov56fJiRuThVFXD6o6/Q354S7pnWMJIVlDBYijsTNx6jKSE4pvrDTs6lUnmGvNyfJwFQQwWy3owKz1ucIhveQ==} @@ -3907,7 +3907,7 @@ snapshots: '@npmcli/promise-spawn': 8.0.3 ini: 5.0.0 lru-cache: 11.2.2 - npm-pick-manifest: 11.0.1 + npm-pick-manifest: 11.0.3 proc-log: 6.1.0 promise-retry: 2.0.1 semver: 7.7.2 @@ -3945,7 +3945,7 @@ snapshots: dependencies: cacache: 20.0.1 json-parse-even-better-errors: 4.0.0 - pacote: 21.0.3(supports-color@10.0.0) + pacote: 21.0.1(supports-color@10.0.0) proc-log: 6.1.0 semver: 7.7.2 transitivePeerDependencies: @@ -4613,15 +4613,15 @@ snapshots: dependencies: '@npmcli/fs': 4.0.0 fs-minipass: 3.0.3 - glob: 10.4.5 + glob: 10.5.0 lru-cache: 11.2.2 minipass: 7.1.2 minipass-collect: 2.0.1 minipass-flush: 1.0.5 minipass-pipeline: 1.2.4 - p-map: 7.0.3 + p-map: 7.0.4 ssri: 12.0.0 - tar: 7.5.2 + tar: 7.5.7 unique-filename: 4.0.0 cacache@20.0.1: @@ -5117,7 +5117,7 @@ snapshots: dependencies: is-glob: 4.0.3 - glob@10.4.5: + glob@10.5.0: dependencies: foreground-child: 3.3.1 jackspeak: 3.4.3 @@ -5369,12 +5369,12 @@ snapshots: transitivePeerDependencies: - supports-color - libnpmpack@9.0.9(supports-color@10.0.0): + libnpmpack@9.0.13(supports-color@10.0.0): dependencies: '@npmcli/arborist': 9.1.6(supports-color@10.0.0) '@npmcli/run-script': 10.0.0(patch_hash=65d59a7c4dd7b00f1c218cbcf97d78fe2f462f2e048de4a22b41bd70dbdefcdc)(supports-color@10.0.0) npm-package-arg: 13.0.0 - pacote: 21.0.3(supports-color@10.0.0) + pacote: 21.2.0(supports-color@10.0.0) transitivePeerDependencies: - supports-color @@ -5478,7 +5478,7 @@ snapshots: cacache: 20.0.1 http-cache-semantics: 4.2.0 minipass: 7.1.2 - minipass-fetch: 5.0.0 + minipass-fetch: 5.0.1 minipass-flush: 1.0.5 minipass-pipeline: 1.2.4 negotiator: 1.0.0 @@ -5537,14 +5537,6 @@ snapshots: optionalDependencies: encoding: 0.1.13 - minipass-fetch@5.0.0: - dependencies: - minipass: 7.1.2 - minipass-sized: 1.0.3 - minizlib: 3.1.0 - optionalDependencies: - encoding: 0.1.13 - minipass-fetch@5.0.1: dependencies: minipass: 7.1.2 @@ -5633,7 +5625,7 @@ snapshots: nopt: 8.1.0 proc-log: 6.1.0 semver: 7.7.2 - tar: 7.5.2 + tar: 7.5.7 tinyglobby: 0.2.15 which: 5.0.0 transitivePeerDependencies: @@ -5799,6 +5791,8 @@ snapshots: p-map@7.0.3: {} + p-map@7.0.4: {} + p-try@2.2.0: {} package-json-from-dist@1.0.1: {} @@ -6190,14 +6184,6 @@ snapshots: minizlib: 3.1.0 yallist: 5.0.0 - tar@7.5.2: - dependencies: - '@isaacs/fs-minipass': 4.0.1 - chownr: 3.0.0 - minipass: 7.1.2 - minizlib: 3.1.0 - yallist: 5.0.0 - tar@7.5.7: dependencies: '@isaacs/fs-minipass': 4.0.1