Skip to content

Force tar-fs >=2.1.3 #4629

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jun 13, 2025
Merged

Force tar-fs >=2.1.3 #4629

merged 1 commit into from
Jun 13, 2025

Conversation

@cte
Copy link
Collaborator

@cte cte commented Jun 13, 2025
edited by ellipsis-dev bot
Loading

Before:

$ pnpm audit
5 vulnerabilities found
Severity: 3 low | 1 moderate | 1 high

After:

$ pnpm audit
4 vulnerabilities found
Severity: 3 low | 1 moderate

Important

Add pnpm override to force tar-fs version >=2.1.3, reducing vulnerabilities.

  • Dependencies:
    • Add pnpm override in package.json to force tar-fs version >=2.1.3.
  • Security:
    • Reduces vulnerabilities from 5 to 4 as per pnpm audit results.
    • Eliminates 1 high severity vulnerability.

This description was created by Ellipsis for 626f684. You can customize this summary. It will automatically update as commits are pushed.

@cte cte requested review from jr and mrubens as code owners June 13, 2025 06:16
@dosubot dosubot bot added the size:XS This PR changes 0-9 lines, ignoring generated files. label Jun 13, 2025
mrubens
mrubens approved these changes Jun 13, 2025
View reviewed changes
Copy link
Collaborator

@mrubens mrubens left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not an expert at this stuff but I like the result!

@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Jun 13, 2025
@cte cte merged commit 28a16c9 into main Jun 13, 2025
19 checks passed
@cte cte deleted the cte/update-tar-fs branch June 13, 2025 06:27
@github-project-automation github-project-automation bot moved this from New to Done in Roo Code Roadmap Jun 13, 2025
@github-project-automation github-project-automation bot moved this from Triage to Done in Roo Code Roadmap Jun 13, 2025
cte added a commit that referenced this pull request Jun 24, 2025
@cte
Force tar-fs >=2.1.3 (#4629)
d83d599
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mrubens mrubens mrubens approved these changes

@jr jr Awaiting requested review from jr jr is a code owner

Assignees

No one assigned

Labels

lgtm This PR has been approved by a maintainer size:XS This PR changes 0-9 lines, ignoring generated files.

Projects

Roo Code Roadmap
Archived in project

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@cte @mrubens