From d594fd1fe43366e88951660a5e1e31288f5174f7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 21 Jan 2026 21:05:16 +0000
Subject: [PATCH] Bump tar from 7.5.2 to 7.5.4

Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.2 to 7.5.4.
- [Release notes](https://github.com/isaacs/node-tar/releases)
- [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md)
- [Commits](https://github.com/isaacs/node-tar/compare/v7.5.2...v7.5.4)

---
updated-dependencies:
- dependency-name: tar
  dependency-version: 7.5.4
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 package.json | 2 +-
 yarn.lock    | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index cede1a25..fe8c4215 100644
--- a/package.json
+++ b/package.json
@@ -390,7 +390,7 @@
         "typescript-eslint": "8.46.2"
     },
     "dependencies": {
-        "tar": "7.5.2",
+        "tar": "7.5.4",
         "tree-sitter": "0.25.0",
         "which": "5.0.0"
     }
diff --git a/yarn.lock b/yarn.lock
index c3390ed7..1f15aa60 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -1602,10 +1602,10 @@ supports-color@^8.1.1:
   dependencies:
     has-flag "^4.0.0"
 
-tar@7.5.2:
-  version "7.5.2"
-  resolved "https://registry.yarnpkg.com/tar/-/tar-7.5.2.tgz#115c061495ec51ff3c6745ff8f6d0871c5b1dedc"
-  integrity sha512-7NyxrTE4Anh8km8iEy7o0QYPs+0JKBTj5ZaqHg6B39erLg0qYXN3BijtShwbsNSvQ+LN75+KV+C4QR/f6Gwnpg==
+tar@7.5.4:
+  version "7.5.4"
+  resolved "https://registry.yarnpkg.com/tar/-/tar-7.5.4.tgz#18b53b44f939a7e03ed874f1fafe17d29e306c81"
+  integrity sha512-AN04xbWGrSTDmVwlI4/GTlIIwMFk/XEv7uL8aa57zuvRy6s4hdBed+lVq2fAZ89XDa7Us3ANXcE3Tvqvja1kTA==
   dependencies:
     "@isaacs/fs-minipass" "^4.0.0"
     chownr "^3.0.0"