nx-aws icon indicating copy to clipboard operation
nx-aws copied to clipboard

Published 20 hours ago verified publisher icon bojanbass

chore(deps): bump tar from 6.2.0 to 7.0.1

Open dependabot[bot] opened this issue 10 months ago • 1 comments

Bumps tar from 6.2.0 to 7.0.1.

Changelog

Sourced from tar's changelog.

Changelog

7.0

  • Rewrite in TypeScript, provide ESM and CommonJS hybrid interface
  • Add tree-shake friendly exports, like import('tar/create') and import('tar/read-entry') to get individual functions or classes.
  • Add chmod option that defaults to false, and deprecate noChmod. That is, reverse the default option regarding explicitly setting file system modes to match tar entry settings.
  • Add processUmask option to avoid having to call process.umask() when chmod: true (or noChmod: false) is set.

6.2

  • Add support for brotli compression
  • Add maxDepth option to prevent extraction into excessively deep folders.

6.1

6.0

  • Drop support for node 6 and 8
  • fix symlinks and hardlinks on windows being packed with \-style path targets

5.0

  • Address unpack race conditions using path reservations
  • Change large-numbers errors from TypeError to Error
  • Add TAR_* error codes
  • Raise TAR_BAD_ARCHIVE warning/error when there are no valid entries found in an archive
  • do not treat ignored entries as an invalid archive
  • drop support for node v4
  • unpack: conditionally use a file mapping to write files on Windows
  • Set more portable 'mode' value in portable mode
  • Set portable gzip option in portable mode

... (truncated)

Commits
  • d99fce3 7.0.1
  • af04392 Do not apply linkpath,global from global pax header
  • b0fbdea 7.0.0
  • 957da75 remove old lib folder
  • 9a260c2 test verifying #398 is fixed
  • 2d89a4e Properly handle long linkpath in PaxHeader
  • 314ec7e list: close file even if no error thrown
  • b3afdbb unpack test: use modern tap features
  • 2330416 test: code style, prefer () to _ for empty fns
  • ae9ce7e test: fix normalize-unicode coverage on linux
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Apr 15 '24 19:04 dependabot[bot]

☁️ Nx Cloud Report

CI is running/has finished running commands for commit 6974a1e1e32e359971f8e12cb0afadaf57ce385b. As they complete they will appear below. Click to see the status, the terminal output, and the build insights.

📂 See all runs for this CI Pipeline Execution

✅ Successfully ran 5 targets

Sent with 💌 from NxCloud.

nx-cloud[bot] avatar Apr 15 '24 19:04 nx-cloud[bot]

Superseded by #602.

dependabot[bot] avatar May 06 '24 19:05 dependabot[bot]