chore(deps): Update tar override to 7.5.7 to address vulnerability CVE-2026-24842

[Artmann]

Summary by CodeRabbit

• Security

  • Added a new vulnerability advisory entry to the repository configuration.

• Chores

  • Pinned tar package to version 7.5.7 to standardize resolution across installs.

_{✏️ Tip: You can customize this high-level summary in your review settings.}

[coderabbitai]

📝 Walkthrough

Walkthrough

Replaces the package.json overrides entry "tar@<7.5.4": "7.5.4" with a direct "tar": "7.5.7" override, changing tar resolution to an exact 7.5.7 version. Adds a new vulnerability entry "GHSA-p5wg-g6qr-c7cg" (with notes and expiry) to the top-level object in .nsprc, inserting the new key-value pair alongside existing entries.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main change: updating the tar dependency override from 7.5.4 to 7.5.7 to address a specific vulnerability.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 0%. Comparing base (e8b41be) to head (f460c64).
⚠️ Report is 1 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@     Coverage Diff     @@
##   main   #308   +/-   ##
===========================
===========================

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.