build(deps-dev): bump tar from 7.4.3 to 7.5.1 (#427)

Bumps [tar](https://github.com/isaacs/node-tar) from 7.4.3 to 7.5.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md">tar's
changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h2>7.5</h2>
<ul>
<li>Added <code>zstd</code> compression support.</li>
</ul>
<h2>7.4</h2>
<ul>
<li>Deprecate <code>onentry</code> in favor of <code>onReadEntry</code>
for clarity.</li>
</ul>
<h2>7.3</h2>
<ul>
<li>Add <code>onWriteEntry</code> option</li>
</ul>
<h2>7.2</h2>
<ul>
<li>DRY the command definitions into a single <code>makeCommand</code>
method,
and update the type signatures to more appropriately infer the
return type from the options and arguments provided.</li>
</ul>
<h2>7.1</h2>
<ul>
<li>Update minipass to v7.1.0</li>
<li>Update the type definitions of <code>write()</code> and
<code>end()</code> methods on
<code>Unpack</code> and <code>Parser</code> classes to be compatible
with the
NodeJS.WritableStream type in the latest versions of
<code>@types/node</code>.</li>
</ul>
<h2>7.0</h2>
<ul>
<li>Drop support for node &lt;18</li>
<li>Rewrite in TypeScript, provide ESM and CommonJS hybrid
interface</li>
<li>Add tree-shake friendly exports, like
<code>import('tar/create')</code>
and <code>import('tar/read-entry')</code> to get individual functions or
classes.</li>
<li>Add <code>chmod</code> option that defaults to false, and deprecate
<code>noChmod</code>. That is, reverse the default option regarding
explicitly setting file system modes to match tar entry
settings.</li>
<li>Add <code>processUmask</code> option to avoid having to call
<code>process.umask()</code> when <code>chmod: true</code> (or
<code>noChmod: false</code>) is
set.</li>
</ul>
<h2>6.2</h2>
<ul>
<li>Add support for brotli compression</li>
<li>Add <code>maxDepth</code> option to prevent extraction into
excessively
deep folders.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/isaacs/node-tar/commit/64728e88cb5805faa78264204d520eb741ce4b6f"><code>64728e8</code></a>
7.5.1</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/5330eb04bc43014f216e5c271b40d5c00d45224d"><code>5330eb0</code></a>
fix: consistent TOCTOU behavior in sync t.list</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/dcb0287d7da925182aa8840ca1038bf44160ca5e"><code>dcb0287</code></a>
7.5.0</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/aa1bed928735d590d213770d4a3069ceecbfffa3"><code>aa1bed9</code></a>
changelog 7.5</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/49bf8f9926f78c319cbeb1c26a7291284c41d2f4"><code>49bf8f9</code></a>
feat: add initial zstd support</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/b35ff9474838fd05d039708d7011c469d9aca301"><code>b35ff94</code></a>
ci: don't bother testing on node 18</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/181be3a985cbe5371336da56745a55ea6b784cec"><code>181be3a</code></a>
update workflows, tshy configs</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/15d4510393ef7c136d243ec09916d45779b90ad9"><code>15d4510</code></a>
7.4.4</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/a4744652c379713d06a0ca30187f3d3456df5694"><code>a474465</code></a>
Fix some typos</li>
<li><a
href="https://github.com/isaacs/node-tar/commit/65ff5bed156d851e32ccf13874c7c2e414fc2ace"><code>65ff5be</code></a>
docs(changelog): add missing v7 breaking change</li>
<li>Additional commits viewable in <a
href="https://github.com/isaacs/node-tar/compare/v7.4.3...v7.5.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=tar&package-manager=npm_and_yarn&previous-version=7.4.3&new-version=7.5.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Author: dependabot[bot]

package-lock.json

@@ -184,7 +184,7 @@
     "split2": "^4.2.0",
     "stacktrace-parser": "^0.1.11",
     "supports-color": "^10.2.2",
-    "tar": "^7.4.3",
+    "tar": "^7.5.1",
     "ts-node": "^10.9.2",
     "tsx": "^4.20.6",
     "typescript": "^5.9.2",