Skip to content

fix(deps): upgrade tar-stream to 3.1.8#118

Open
eftanzer wants to merge 1 commit intomainfrom
snyk-upgrade-283dea9a9a9fd025a50b762b531eafb5
Open

fix(deps): upgrade tar-stream to 3.1.8#118
eftanzer wants to merge 1 commit intomainfrom
snyk-upgrade-283dea9a9a9fd025a50b762b531eafb5

Conversation

@eftanzer
Copy link
Copy Markdown
Contributor

@eftanzer eftanzer commented Apr 16, 2026
edited by cursor bot
Loading

snyk-top-banner

Snyk has created this PR to upgrade tar-stream from 3.1.7 to 3.1.8.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 1 version ahead of your current version.

  • The recommended version was released 2 months ago.

Breaking Change Risk

Merge Risk: Low

Notice: This assessment is enhanced by AI.

Release notes
Package name: tar-stream from tar-stream GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Snyk has automatically assigned this pull request, set who gets assigned.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Note

Low Risk
Dependency-only bump with no application code changes; risk is limited to potential runtime behavior changes in tar-stream/transitive stream utilities.

Overview
Updates the tar-stream dependency from 3.1.7 to 3.1.8 in package.json.

Refreshes package-lock.json accordingly, pulling in updated transitive packages (notably newer streamx and new bare-*/text-decoder-related dependencies) and dropping queue-tick.

Reviewed by Cursor Bugbot for commit 262b9a6. Bugbot is set up for automated code reviews on this repo. Configure here.

@eftanzer eftanzer requested a review from a team as a code owner April 16, 2026 12:09
@eftanzer eftanzer self-assigned this Apr 16, 2026
@eftanzer
Copy link
Copy Markdown
Contributor Author

eftanzer commented Apr 16, 2026

Merge Risk: Low

This is a patch version upgrade for tar-stream. Patch releases typically contain backward-compatible bug fixes or security patches and are not expected to introduce breaking changes.

Source: Package documentation

Notice 🤖: This content was augmented using artificial intelligence. AI-generated content may contain errors and should be reviewed for accuracy before use.

@snyk-io
Copy link
Copy Markdown

snyk-io bot commented Apr 16, 2026

Snyk checks have passed. No issues have been found so far.

Status Scan Engine Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@eftanzer eftanzer

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@eftanzer @snyk-bot