Snyk has created this PR to upgrade tar from 6.1.11 to 6.2.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **6 versions** ahead of your current version.
- The recommended version was released on **2 months ago**.
#### Issues fixed by the recommended upgrade:
| | Issue | Score | Exploit Maturity |
:-------------------------:|:-------------------------|:-------------------------|:-------------------------
![medium severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png 'medium severity') | Uncontrolled Resource Consumption ('Resource Exhaustion') [SNYK-JS-TAR-6476909](https://snyk.io/vuln/SNYK-JS-TAR-6476909) | **646** | Proof of Concept
Release notes Package name: tar
This PR was automatically created by Snyk using the credentials of a real user.
![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)
Snyk has created this PR to upgrade tar from 6.1.11 to 6.2.1.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.- The recommended version is **6 versions** ahead of your current version. - The recommended version was released on **2 months ago**. #### Issues fixed by the recommended upgrade: | | Issue | Score | Exploit Maturity | :-------------------------:|:-------------------------|:-------------------------|:------------------------- ![medium severity](https://res.cloudinary.com/snyk/image/upload/w_20,h_20/v1561977819/icon/m.png 'medium severity') | Uncontrolled Resource Consumption ('Resource Exhaustion')
[SNYK-JS-TAR-6476909](https://snyk.io/vuln/SNYK-JS-TAR-6476909) | **646** | Proof of Concept
Release notes
Package name: tar
v6.2.1
Dependencies
cc4e0dd
#343 bump minipass from 3.3.6 to 4.0.0Bug Fixes
57493ee
#332 ensuring close event is emited after stream has ended (@ webark)b003c64
#314 replace deprecated String.prototype.substr() (#314) (@ CommanderRoot, @ lukekarrys)Documentation
f129929
#313 remove dead link to benchmarks (#313) (@ yetzt)c1faa9f
add examples/explanation of using tar.t (@ isaacs)Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: