From 7fe701587cdeaad314a663a329860bd791e3a493 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sun, 1 Feb 2026 06:54:30 +0000
Subject: [PATCH] fix: deps/npm/node_modules/libnpmpublish/package.json to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15032660
- https://snyk.io/vuln/SNYK-JS-TAR-15127355
---
 deps/npm/node_modules/libnpmpublish/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/deps/npm/node_modules/libnpmpublish/package.json b/deps/npm/node_modules/libnpmpublish/package.json
index eece07bee2341b..78c139d87b6d07 100644
--- a/deps/npm/node_modules/libnpmpublish/package.json
+++ b/deps/npm/node_modules/libnpmpublish/package.json
@@ -41,7 +41,7 @@
   "dependencies": {
     "normalize-package-data": "^5.0.0",
     "npm-package-arg": "^10.1.0",
-    "npm-registry-fetch": "^14.0.3",
+    "npm-registry-fetch": "^18.0.1",
     "semver": "^7.3.7",
     "ssri": "^10.0.1"
   },