From ad5d5f6cb94390ff5e2e81ac7b50c0447829c4a8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 19 Feb 2026 02:44:07 +0000
Subject: [PATCH] Bump mp4box from 0.5.4 to 2.3.0

Bumps [mp4box](https://github.com/gpac/mp4box.js) from 0.5.4 to 2.3.0.
- [Release notes](https://github.com/gpac/mp4box.js/releases)
- [Commits](https://github.com/gpac/mp4box.js/compare/v0.5.4...v2.3.0)

---
updated-dependencies:
- dependency-name: mp4box
  dependency-version: 2.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 packages/voice/package.json |  2 +-
 pnpm-lock.yaml              | 32 ++++++++++++++++----------------
 2 files changed, 17 insertions(+), 17 deletions(-)

diff --git a/packages/voice/package.json b/packages/voice/package.json
index edf1413..1110d30 100644
--- a/packages/voice/package.json
+++ b/packages/voice/package.json
@@ -45,7 +45,7 @@
     "@fluxerjs/core": "workspace:*",
     "@fluxerjs/types": "workspace:*",
     "@livekit/rtc-node": "^0.13.24",
-    "mp4box": "^0.5.2",
+    "mp4box": "^2.3.0",
     "opus-decoder": "^0.7.0",
     "prism-media": "^1.3.5",
     "tweetnacl": "^1.0.3",
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index e0ccd8e..b9022d7 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -264,8 +264,8 @@ importers:
         specifier: ^0.13.24
         version: 0.13.24
       mp4box:
-        specifier: ^0.5.2
-        version: 0.5.4
+        specifier: ^2.3.0
+        version: 2.3.0
       opus-decoder:
         specifier: ^0.7.0
         version: 0.7.11
@@ -2348,8 +2348,8 @@ packages:
   minimist@1.2.8:
     resolution: {integrity: sha512-2yyAR8qBkN3YuheJanUpWC5U3bb5osDywNB8RzDVlDwDHbocAJveqqj1u8+SVD7jkWT4yvsHCpWqqWqAxb0zCA==}
 
-  minipass@7.1.2:
-    resolution: {integrity: sha512-qOOzS1cBTWYF4BH8fVePDBOO9iptMnGUEZwNc/cMWnTV2nVLZ7VoNWEPHkYczZA0pdoA7dl6e7FL659nX9S2aw==}
+  minipass@7.1.3:
+    resolution: {integrity: sha512-tEBHqDnIoM/1rXME1zgka9g6Q2lcoCkxHLuc7ODJ5BxbP5d4c2Z5cGgtXAku59200Cx7diuHTOYfSBD8n6mm8A==}
     engines: {node: '>=16 || 14 >=14.17'}
 
   minizlib@3.1.0:
@@ -2359,8 +2359,9 @@ packages:
   mlly@1.8.0:
     resolution: {integrity: sha512-l8D9ODSRWLe2KHJSifWGwBqpTZXIXTeo8mlKjY+E2HAakaTeNpqAyBZ8GSqLzHgw4XmHmC8whvpjJNMbFZN7/g==}
 
-  mp4box@0.5.4:
-    resolution: {integrity: sha512-GcCH0fySxBurJtvr0dfhz0IxHZjc1RP+F+I8xw+LIwkU1a+7HJx8NCDiww1I5u4Hz6g4eR1JlGADEGJ9r4lSfA==}
+  mp4box@2.3.0:
+    resolution: {integrity: sha512-nnABYbdh4UguEYyV+uRwQBi1tbb8kXka2Fx9yKzmDKAeh8gkvRKYxoK1XDd8GQIjSfN4rvsXrW1CBo4yRQJZDA==}
+    engines: {node: '>=20.8.1'}
 
   mri@1.2.0:
     resolution: {integrity: sha512-tzzskb3bG8LvYGFF/mDTpq3jpI6Q9wc3LEmBaghu+DdCssd1FakN7Bc0hVNmEyGq1bq3RgfkCb3cmQLpNPOroA==}
@@ -2916,10 +2917,9 @@ packages:
   symbol-tree@3.2.4:
     resolution: {integrity: sha512-9QNk5KwDF+Bvz+PyObkmSYjI5ksVUYtjW7AU22r2NKcfLJcXp96hkDWU3+XndOsUb+AQ9QhfzfCT2O+CNWT5Tw==}
 
-  tar@7.5.7:
-    resolution: {integrity: sha512-fov56fJiRuThVFXD6o6/Q354S7pnWMJIVlDBYijsTNx6jKSE4pvrDTs6lUnmGvNyfJwFQQwWy3owKz1ucIhveQ==}
+  tar@7.5.9:
+    resolution: {integrity: sha512-BTLcK0xsDh2+PUe9F6c2TlRp4zOOBMTkoQHQIWSIzI0R7KG46uEwq4OPk2W7bZcprBMsuaeFsqwYr7pjh6CuHg==}
     engines: {node: '>=18'}
-    deprecated: Old versions of tar are not supported, and contain widely publicized security vulnerabilities, which have been fixed in the current version. Please update. Support for old versions may be purchased (at exorbitant rates) by contacting i@izs.me
 
   term-size@2.2.1:
     resolution: {integrity: sha512-wK0Ri4fOGjv/XPy8SBHZChl8CM7uMc5VML7SqiQ0zG7+J5Vr+RMQDoHa2CNT6KHUnTGIXH34UDMkPzAUyapBZg==}
@@ -3657,7 +3657,7 @@ snapshots:
       npmlog: 5.0.1
       rimraf: 3.0.2
       semver: 7.7.4
-      tar: 7.5.7
+      tar: 7.5.9
     transitivePeerDependencies:
       - encoding
       - supports-color
@@ -3995,7 +3995,7 @@ snapshots:
 
   '@isaacs/fs-minipass@4.0.1':
     dependencies:
-      minipass: 7.1.2
+      minipass: 7.1.3
     optional: true
 
   '@jridgewell/gen-mapping@0.3.13':
@@ -5416,12 +5416,12 @@ snapshots:
 
   minimist@1.2.8: {}
 
-  minipass@7.1.2:
+  minipass@7.1.3:
     optional: true
 
   minizlib@3.1.0:
     dependencies:
-      minipass: 7.1.2
+      minipass: 7.1.3
     optional: true
 
   mlly@1.8.0:
@@ -5431,7 +5431,7 @@ snapshots:
       pkg-types: 1.3.1
       ufo: 1.6.3
 
-  mp4box@0.5.4: {}
+  mp4box@2.3.0: {}
 
   mri@1.2.0: {}
 
@@ -5969,11 +5969,11 @@ snapshots:
   symbol-tree@3.2.4:
     optional: true
 
-  tar@7.5.7:
+  tar@7.5.9:
     dependencies:
       '@isaacs/fs-minipass': 4.0.1
       chownr: 3.0.0
-      minipass: 7.1.2
+      minipass: 7.1.3
       minizlib: 3.1.0
       yallist: 5.0.0
     optional: true