Bump tar from 7.5.9 to 7.5.11 in /test

[dependabot]

Bumps tar from 7.5.9 to 7.5.11.

Commits

• bf776f6 7.5.11
• f48b5fa prevent escaping symlinks with drive-relative paths
• 97cff15 docs: more security info
• 2b72abc 7.5.10
• 7bc755d parse root off paths before sanitizing .. parts
• c8cb846 update deps
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[nginxproxymanagerci]

CI Error:

/bin/bash: warning: setlocale: LC_ALL: cannot change locale (en_US.UTF-8): No such file or directory
certbot-node: Pulling from nginxproxymanager/nginx-full
Digest: sha256:aebca10f754dd4e1f745fa613bb7a685cfa3d0b1f21c8515e134548b7187084b
Status: Image is up to date for nginxproxymanager/nginx-full:certbot-node
docker.io/nginxproxymanager/nginx-full:certbot-node
�[1;34m❯ �[1;36mTesting backend ...�[0m
yarn install v1.22.22
[1/4] Resolving packages...
[2/4] Fetching packages...
warning lru.min@1.1.4: The engine "bun" appears to be invalid.
warning lru.min@1.1.4: The engine "deno" appears to be invalid.
warning sql-escaper@1.3.3: The engine "bun" appears to be invalid.
warning sql-escaper@1.3.3: The engine "deno" appears to be invalid.
warning " > @apidevtools/json-schema-ref-parser@15.3.1" has unmet peer dependency "@types/json-schema@^7.0.15".
warning " > mysql2@3.18.2" has unmet peer dependency "@types/node@>= 8".
warning " > @apidevtools/swagger-parser@12.1.0" has unmet peer dependency "openapi-types@>=7".
[3/4] Linking dependencies...
[4/4] Building fresh packages...
Done in 9.01s.
yarn run v1.22.22
$ biome lint .
migrations/20260131163528_trust_forwarded_proto.js:13:12 lint/complexity/useArrowFunction  FIXABLE  ━━━━━━━━━━

  ! This function expression can be turned into an arrow function.
  
    11 │  * @returns {Promise}
    12 │  */
  > 13 │ const up = function (knex) {
       │            ^^^^^^^^^^^^^^^^^
  > 14 │     logger.info(`[${migrateName}] Migrating Up...`);
        ...
  > 22 │         });
  > 23 │ };
       │ ^
    24 │ 
    25 │ /**
  
  i Function expressions that don't use this can be turned into arrow functions.
  
  i Safe fix: Use an arrow function instead.
  
    11 11 │    * @returns {Promise}
    12 12 │    */
    13    │ - const·up·=·function·(knex)·{
       13 │ + const·up·=·(knex)·=>·{
    14 14 │       logger.info(`[${migrateName}] Migrating Up...`);
    15 15 │   
  

migrations/20260131163528_trust_forwarded_proto.js:31:14 lint/complexity/useArrowFunction  FIXABLE  ━━━━━━━━━━

  ! This function expression can be turned into an arrow function.
  
    29 │  * @returns {Promise}
    30 │  */
  > 31 │ const down = function (knex) {
       │              ^^^^^^^^^^^^^^^^^
  > 32 │     logger.info(`[${migrateName}] Migrating Down...`);
        ...
  > 40 │         });
  > 41 │ };
       │ ^
    42 │ 
    43 │ export { up, down };
  
  i Function expressions that don't use this can be turned into arrow functions.
  
  i Safe fix: Use an arrow function instead.
  
    29 29 │    * @returns {Promise}
    30 30 │    */
    31    │ - const·down·=·function·(knex)·{
       31 │ + const·down·=·(knex)·=>·{
    32 32 │       logger.info(`[${migrateName}] Migrating Down...`);
    33 33 │   
  

Checked 88 files in 56ms. No fixes applied.
Found 2 warnings.
Done in 0.13s.
�[1;34m❯ �[1;32mTesting Complete�[0m
�[1;34m❯ �[1;36mBuilding ...�[0m
#0 building with "default" instance using docker driver

#1 [internal] load build definition from Dockerfile
#1 transferring dockerfile: 2.20kB done
#1 DONE 0.0s

#2 [internal] load metadata for docker.io/nginxproxymanager/nginx-full:certbot-node
#2 DONE 0.5s

#3 [internal] load metadata for docker.io/nginxproxymanager/testca:latest
#3 DONE 0.6s

#4 [internal] load .dockerignore
#4 transferring context: 2B done
#4 DONE 0.0s

#5 [testca 1/1] FROM docker.io/nginxproxymanager/testca:latest@sha256:e4ddbcecaad278c32d743bbc2561cbbf630b180ec892b264e2f3d0dd1ccc9825
#5 resolve docker.io/nginxproxymanager/testca:latest@sha256:e4ddbcecaad278c32d743bbc2561cbbf630b180ec892b264e2f3d0dd1ccc9825 0.0s done
#5 ...

#6 [internal] load build context
#6 transferring context: 3.96MB 0.0s done
#6 DONE 0.1s

#5 [testca 1/1] FROM docker.io/nginxproxymanager/testca:latest@sha256:e4ddbcecaad278c32d743bbc2561cbbf630b180ec892b264e2f3d0dd1ccc9825
#5 sha256:0ed75c6b32e822b75139354a8de6de9fd4bc2ceedd39a85b2554cae17a6edb7f 122B / 122B 0.0s done
#5 sha256:81ee1134816c917968d1534262c5066b42f9d62a7b05be82e7b33c20d07fc753 2.87kB / 2.87kB 0.0s done
#5 sha256:a84b6ba190dd1d5400fff935d69fe387b887febb8b0c064dfc49a3ce9f925c55 51.07kB / 51.07kB 0.0s done
#5 sha256:1548069acf510946fd1a6ef4258005191af432fa551056f3b87860d938cc4f2f 1.16kB / 1.16kB done
#5 sha256:8013759f7522b8b1357b2de70bc0629a90b3714569a359a17f1ef1dc520c10ef 3.91MB / 3.91MB 0.1s done
#5 sha256:4f4fb700ef54461cfa02571ae0db9a0dc1e0cdb5577484a6d75e68dc38e8acc1 0B / 32B 0.1s
#5 sha256:29a33b00fed07d7a3f9275422f37a913a0b42d9850ccfb68156ddd1d0369246f 1.05MB / 12.21MB 0.1s
#5 sha256:fe33f2ec4fc5b184aad3dd8307abf843cebd01e3233ca6da2d99b963d887e9d3 1.05MB / 6.69MB 0.1s
#5 sha256:b7d4789d852064ebf61c8589f9a13e53390524f8dda43864d36bbfdd8363e750 2.10MB / 12.30MB 0.1s
#5 ...

#7 [stage-1  2/11] RUN echo "fs.file-max = 65535" > /etc/sysctl.conf 	&& apt-get update 	&& apt-get install -y --no-install-recommends jq logrotate 	&& apt-get clean 	&& rm -rf /var/lib/apt/lists/*
#7 CACHED

#8 [stage-1  4/11] RUN /tmp/install-s6 "linux/amd64" && rm -f /tmp/install-s6
#8 CACHED

#9 [stage-1  6/11] COPY frontend/dist /app/frontend
#9 CACHED

#10 [stage-1  3/11] COPY docker/scripts/install-s6 /tmp/install-s6
#10 CACHED

#11 [stage-1  5/11] COPY backend       /app
#11 CACHED

#12 [stage-1  7/11] WORKDIR /app
#12 CACHED

#13 [stage-1  9/11] COPY docker/rootfs /
#13 CACHED

#14 [stage-1  8/11] RUN yarn install 	&& yarn cache clean
#14 CACHED

#15 [stage-1 10/11] COPY --from=testca /home/step/certs/root_ca.crt /etc/ssl/certs/NginxProxyManager.crt
#15 ERROR: short read: expected 32 bytes but got 0: unexpected EOF

#16 [stage-1  1/11] FROM docker.io/nginxproxymanager/nginx-full:certbot-node@sha256:aebca10f754dd4e1f745fa613bb7a685cfa3d0b1f21c8515e134548b7187084b
#16 resolve docker.io/nginxproxymanager/nginx-full:certbot-node@sha256:aebca10f754dd4e1f745fa613bb7a685cfa3d0b1f21c8515e134548b7187084b 0.0s done
#16 CANCELED
------
 > [stage-1 10/11] COPY --from=testca /home/step/certs/root_ca.crt /etc/ssl/certs/NginxProxyManager.crt:
------
Dockerfile:48
--------------------
  46 |     # add late to limit cache-busting by modifications
  47 |     COPY docker/rootfs /
  48 | >>> COPY --from=testca /home/step/certs/root_ca.crt /etc/ssl/certs/NginxProxyManager.crt
  49 |     
  50 |     # Remove frontend service not required for prod, dev nginx config as well
--------------------
ERROR: failed to build: failed to solve: failed to compute cache key: short read: expected 32 bytes but got 0: unexpected EOF