From 58154d5a9de0fdda90ee66cb88c682b51d107fae Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Tue, 27 Jan 2026 10:47:04 +0000
Subject: [PATCH] fix: workspaces/libnpmfund/package.json to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-TAR-15038581
- https://snyk.io/vuln/SNYK-JS-TAR-15032660
---
 workspaces/libnpmfund/package.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/workspaces/libnpmfund/package.json b/workspaces/libnpmfund/package.json
index 5eb275e399695..36520e78b55d8 100644
--- a/workspaces/libnpmfund/package.json
+++ b/workspaces/libnpmfund/package.json
@@ -45,7 +45,7 @@
     "tap": "^16.3.8"
   },
   "dependencies": {
-    "@npmcli/arborist": "^7.1.0"
+    "@npmcli/arborist": "^9.0.0"
   },
   "engines": {
     "node": "^16.14.0 || >=18.0.0"