From 93e89189d5fc6e767ca64b7d6dbb1cd624910ac6 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 23 Mar 2024 02:03:27 +0000
Subject: [PATCH] fix: deps/npm/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-6476909
---
 deps/npm/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/deps/npm/package.json b/deps/npm/package.json
index fb2b04c1b5c60f..e1ce40a529ae92 100644
--- a/deps/npm/package.json
+++ b/deps/npm/package.json
@@ -93,7 +93,7 @@
     "once": "~1.4.0",
     "opener": "~1.4.3",
     "osenv": "~0.1.4",
-    "pacote": "^7.0.2",
+    "pacote": "^10.3.1",
     "path-is-inside": "~1.0.2",
     "promise-inflight": "~1.0.1",
     "qrcode-terminal": "~0.11.0",
@@ -116,7 +116,7 @@
     "sorted-union-stream": "~2.1.3",
     "ssri": "~5.0.0",
     "strip-ansi": "~4.0.0",
-    "tar": "^4.0.2",
+    "tar": "^6.2.1",
     "text-table": "~0.2.0",
     "uid-number": "0.0.6",
     "umask": "~1.1.0",