From d29af6f871233a3156738decee7e69531ffb4991 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 3 Jun 2025 00:29:29 +0000
Subject: [PATCH] fix: deps/npm/package.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-SEMVER-3247795
- https://snyk.io/vuln/SNYK-JS-TAR-6476909
---
 deps/npm/package.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/deps/npm/package.json b/deps/npm/package.json
index 35f4e956169ff3..238d5ae0721193 100644
--- a/deps/npm/package.json
+++ b/deps/npm/package.json
@@ -72,7 +72,7 @@
     "is-cidr": "^2.0.6",
     "json-parse-better-errors": "^1.0.2",
     "lazy-property": "~1.0.0",
-    "libcipm": "^2.0.2",
+    "libcipm": "^4.0.8",
     "libnpmhook": "^4.0.1",
     "libnpx": "^10.2.0",
     "lock-verify": "^2.0.2",
@@ -87,13 +87,13 @@
     "mississippi": "^3.0.0",
     "mkdirp": "~0.5.1",
     "move-concurrently": "^1.0.1",
-    "node-gyp": "^3.8.0",
+    "node-gyp": "^5.0.6",
     "nopt": "~4.0.1",
     "normalize-package-data": "~2.4.0",
     "npm-audit-report": "^1.3.1",
     "npm-cache-filename": "~1.0.2",
     "npm-install-checks": "~3.0.0",
-    "npm-lifecycle": "^2.1.0",
+    "npm-lifecycle": "^3.1.5",
     "npm-package-arg": "^6.1.0",
     "npm-packlist": "^1.1.12",
     "npm-pick-manifest": "^2.1.0",
@@ -105,7 +105,7 @@
     "once": "~1.4.0",
     "opener": "^1.5.1",
     "osenv": "^0.1.5",
-    "pacote": "^8.1.6",
+    "pacote": "^10.3.1",
     "path-is-inside": "~1.0.2",
     "promise-inflight": "~1.0.1",
     "qrcode-terminal": "^0.12.0",