Open
Description
Summary
tar <6.1.11 has denial of service vulnerability, bumping it to v6.2.1 should be enough
also node-gyp 8.* is dependent on tar so that version need bumping too
Proposed implementation
bump tar version to ^6.2.1 or latest
bump node-gyp version to 11