Skip to content
This repository was archived by the owner on Mar 17, 2026. It is now read-only.

fix: bump tar to ^7.5.3 to address security vulnerability #2926

Open
dgca wants to merge 1 commit into
base: master
Choose a base branch
from

fix: bump tar to ^7.5.3 to address security vulnerability

59ad382
Select commit
Loading
Failed to load commit list.
Open

fix: bump tar to ^7.5.3 to address security vulnerability #2926

fix: bump tar to ^7.5.3 to address security vulnerability
59ad382
Select commit
Loading
Failed to load commit list.
StepSecurity Actions Security / StepSecurity Required Checks succeeded Jan 22, 2026 in 2s

StepSecurity Required Checks

Finished StepSecurity Required Checks

  • NPM Compromised Packages Check - Checks for compromised npm package versions in the PR
  • NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases

Details

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

The following npm packages are inspected in current PR

Package Name Previous Version Current Version file Current Version Release Date
tar 7.5.3 package.json 2026-01-16T20:42:02Z
wagmi 2.14.12 2.14.12 package.json 2025-02-24T06:07:39Z
⏲️ History

Previous invocation results of same check:

View more details on StepSecurity Actions Security