Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

chore(deps): bump nanotar from 0.2.0 to 0.3.0

Closed
Number: #1091
Type: Pull Request
State: Closed
Author: dependabot[bot] dependabot[bot]
Association: Unknown
Comments: 3
Created: February 23, 2026 at 05:55 AM UTC
(3 months ago)
Updated: February 24, 2026 at 01:31 AM UTC
(3 months ago)
Closed: February 24, 2026 at 01:31 AM UTC
(3 months ago)
Time to Close: about 20 hours
Labels:
dependencies javascript
Description:

Bumps nanotar from 0.2.0 to 0.3.0.

Release notes

Sourced from nanotar's releases.

v0.3.0

compare changes

Changes in #31 also backported to v0.2.1; however, it WAS NOT a security issue (see #59 for appeal).

🚀 Enhancements

  • parse: ⚠️ Support extended item types and headers (#30)
  • parse: Handle long file names (#31)

🩹 Fixes

  • Sanitise paths (#58)

✅ Tests

  • Add additional tests for different formats (f13b802)
  • Update fixture (6fa56df)

❤️ Contributors

Changelog

Sourced from nanotar's changelog.

v0.3.0

compare changes

🚀 Enhancements

  • parse: ⚠️ Support extended item types and headers (#30)
  • parse: Handle long file names (#31)

🩹 Fixes

  • Sanitise paths (#58)

🏡 Chore

✅ Tests

  • Add additional tests for different formats (f13b802)
  • Update fixture (6fa56df)

⚠️ Breaking Changes

  • parse: ⚠️ Support extended item types and headers (#30)

❤️ Contributors

Commits
  • 32ffc34 chore(release): v0.3.0
  • 322f967 fix: sanitise paths (#58)
  • a52e49e chore(deps): update devdependency @​types/node to ^22.19.1 (#52)
  • d7feb9f chore(deps): update all non-major dependencies (#48)
  • e7138db chore(deps): update all non-major dependencies (#47)
  • a7d7452 chore(deps): update all non-major dependencies (#44)
  • d36693d chore(deps): update all non-major dependencies (#43)
  • 2872f34 chore(deps): update all non-major dependencies (#41)
  • 0649ee1 chore(deps): update autofix-ci/action digest to 635ffb0 (#42)
  • 4fe65ab chore(deps): update devdependency vitest to v3.0.5 [security] (#37)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Package Dependencies
Package:
nanotar
Ecosystem:
npm
Version Change:
0.2.0 → 0.3.0
Update Type:
Minor
Actions
View on GitHub View Repository All Dependabot PRs
Technical Details
ID: 14084691
UUID: 3976482156
Node ID: PR_kwDOIREOSc7Fj3w-
Host: GitHub
Repository: SocketDev/socket-cli