chore: update nsprc to ignore tar vulnerability

PatrickDinh · PatrickDinh · commit 27a4235d3591 · 2026-02-02T14:41:26.000+10:00
diff --git a/.nsprc b/.nsprc
@@ -3,5 +3,10 @@
     "active": true,
     "expiry": "2026-02-15",
     "notes": "undici vulnerability in @actions/http-client (semantic-release dep). No fix in v5 line, fix requires major version bump to v6.23.0+."
+  },
+  "1112659": {
+    "active": true,
+    "expiry": "2026-02-15",
+    "notes": "tar version 7.5.4 is bundled inside npm (semantic-release/npm) and can't be override. We need to wait for a fix from npm"
   }
 }

Original file line number	Diff line number	Diff line change
`@@ -3,5 +3,10 @@`
`3`	`3`	`"active": true,`
`4`	`4`	`"expiry": "2026-02-15",`
`5`	`5`	`"notes": "undici vulnerability in @actions/http-client (semantic-release dep). No fix in v5 line, fix requires major version bump to v6.23.0+."`
	`6`	`+ },`
	`7`	`+ "1112659": {`
	`8`	`+ "active": true,`
	`9`	`+ "expiry": "2026-02-15",`
	`10`	`+ "notes": "tar version 7.5.4 is bundled inside npm (semantic-release/npm) and can't be override. We need to wait for a fix from npm"`
`6`	`11`	`}`
`7`	`12`	`}`