tar - npm Package Compare versions

Comparing version 4.4.6 to 4.4.7

lib/parse.js

@@ -32,2 +32,3 @@ 'use strict'
 const zlib = require('minizlib')
+const Buffer = require('./buffer.js')
 
@@ -34,0 +35,0 @@ const gzipHeader = Buffer.from([0x1f, 0x8b])

lib/write-entry.js

@@ -230,9 +230,19 @@ 'use strict'
     if (bytesRead <= 0 && remain > 0) {
-      const er = new Error('unexpected EOF')
+      const er = new Error('encountered unexpected EOF')
       er.path = this.absolute
       er.syscall = 'read'
       er.code = 'EOF'
-      this.emit('error', er)
+      this[CLOSE](fd)
+      return this.emit('error', er)
     }
 
+    if (bytesRead > remain) {
+      const er = new Error('did not encounter expected EOF')
+      er.path = this.absolute
+      er.syscall = 'read'
+      er.code = 'EOF'
+      this[CLOSE](fd)
+      return this.emit('error', er)
+    }
+
     // null out the rest of the buffer, if we could fit the block padding
@@ -239,0 +249,0 @@ if (bytesRead === remain) {

package.json

@@ -5,3 +5,3 @@ {
   "description": "tar for node",
-  "version": "4.4.6",
+  "version": "4.4.7",
   "repository": {
@@ -20,6 +20,6 @@ "type": "git",
   "dependencies": {
-    "chownr": "^1.0.1",
+    "chownr": "^1.1.1",
     "fs-minipass": "^1.2.5",
-    "minipass": "^2.3.3",
-    "minizlib": "^1.1.0",
+    "minipass": "^2.3.4",
+    "minizlib": "^1.1.1",
     "mkdirp": "^0.5.0",
@@ -30,3 +30,3 @@ "safe-buffer": "^5.1.2",
   "devDependencies": {
-    "chmodr": "^1.0.2",
+    "chmodr": "^1.2.0",
     "end-of-stream": "^1.4.1",
@@ -37,4 +37,4 @@ "events-to-array": "^1.1.2",
     "tap": "^12.0.1",
-    "tar-fs": "^1.16.2",
-    "tar-stream": "^1.6.0"
+    "tar-fs": "^1.16.3",
+    "tar-stream": "^1.6.2"
   },
@@ -41,0 +41,0 @@ "license": "ISC",

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

133078

increased by0.24%

Lines of code

2971

increased by0.34%

Dependency changes

• Updatedchownr@^1.1.1

• Updatedminipass@^2.3.4

• Updatedminizlib@^1.1.1