From cc68a408716823f571c5f6dcaded1f92fd007514 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 20 Jan 2026 20:40:32 +0000
Subject: [PATCH] fix: deps/npm/node_modules/libnpmdiff/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
---
 deps/npm/node_modules/libnpmdiff/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/deps/npm/node_modules/libnpmdiff/package.json b/deps/npm/node_modules/libnpmdiff/package.json
index 883748ee63f858..854d15cefb9d98 100644
--- a/deps/npm/node_modules/libnpmdiff/package.json
+++ b/deps/npm/node_modules/libnpmdiff/package.json
@@ -59,8 +59,8 @@
     "diff": "^5.0.0",
     "minimatch": "^3.0.4",
     "npm-package-arg": "^9.0.0",
-    "pacote": "^13.0.2",
-    "tar": "^6.1.0"
+    "pacote": "^21.0.1",
+    "tar": "^7.5.4"
   },
   "templateOSS": {
     "version": "2.9.2"