Skip to content

Comments

Update dependencies#7329

Merged
lukekarrys merged 8 commits intolatestfrom
lk/deps
Apr 2, 2024
Merged

Update dependencies#7329
lukekarrys merged 8 commits intolatestfrom
lk/deps

Conversation

@lukekarrys
Copy link
Contributor

@lukekarrys lukekarrys commented Apr 2, 2024

  • deps: @sigstore/tuf@2.3.2
  • deps: binary-extensions@2.3.0
  • deps: cli-table3@0.6.4
  • deps: glob@10.3.12
  • deps: ini@4.1.2
  • deps: minimatch@9.0.4
  • deps: node-gyp@10.1.0
  • deps: tar@6.2.1

@lukekarrys lukekarrys requested a review from a team as a code owner April 2, 2024 00:27
@lukekarrys lukekarrys changed the title lk/deps Update dependencies Apr 2, 2024
fritzy
fritzy approved these changes Apr 2, 2024
View reviewed changes
Copy link
Contributor

@fritzy fritzy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@lukekarrys lukekarrys merged commit 9ccff72 into latest Apr 2, 2024
@lukekarrys lukekarrys deleted the lk/deps branch April 2, 2024 12:38
@github-actions github-actions bot mentioned this pull request Apr 2, 2024
Merged
@npm-cli-bot npm-cli-bot mentioned this pull request Apr 3, 2024
Merged
@michaelact
Copy link

michaelact commented Apr 16, 2024

Is there a plan to include this update in older versions? It fixes a security issue CVE-2024-28863 found in node-tar versions earlier than 6.2.1.

@wraithgar
Copy link
Member

wraithgar commented Apr 16, 2024

That is up to the node.js folks to update npm in node 18.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@fritzy fritzy fritzy approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@lukekarrys @michaelact @wraithgar @fritzy