From 3b1df479a5bde029bff1a9ed06dc75a86b12c65e Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Sat, 31 Jan 2026 10:56:29 +0000
Subject: [PATCH] fix: workspaces/libnpmorg/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
- https://snyk.io/vuln/SNYK-JS-TAR-15032660
- https://snyk.io/vuln/SNYK-JS-TAR-15127355
---
 workspaces/libnpmorg/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/workspaces/libnpmorg/package.json b/workspaces/libnpmorg/package.json
index aa3440de58369..2089b3e6ae704 100644
--- a/workspaces/libnpmorg/package.json
+++ b/workspaces/libnpmorg/package.json
@@ -42,7 +42,7 @@
   "homepage": "https://npmjs.com/package/libnpmorg",
   "dependencies": {
     "aproba": "^2.0.0",
-    "npm-registry-fetch": "^17.0.1"
+    "npm-registry-fetch": "^18.0.1"
   },
   "engines": {
     "node": "^16.14.0 || >=18.0.0"