From 96deedc173f330e36fcbbff7f8e045586ad772db Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 21 Jan 2026 06:50:24 +0000
Subject: [PATCH] fix: deps/npm/node_modules/libnpmpack/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
---
 deps/npm/node_modules/libnpmpack/package.json | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/deps/npm/node_modules/libnpmpack/package.json b/deps/npm/node_modules/libnpmpack/package.json
index e0538b1716095c..23562b36ac6714 100644
--- a/deps/npm/node_modules/libnpmpack/package.json
+++ b/deps/npm/node_modules/libnpmpack/package.json
@@ -34,9 +34,9 @@
   "bugs": "https://github.com/npm/libnpmpack/issues",
   "homepage": "https://npmjs.com/package/libnpmpack",
   "dependencies": {
-    "@npmcli/run-script": "^2.0.0",
+    "@npmcli/run-script": "^9.0.2",
     "npm-package-arg": "^8.1.0",
-    "pacote": "^12.0.0"
+    "pacote": "^21.0.1"
   },
   "engines": {
     "node": "^12.13.0 || ^14.15.0 || >=16"