Bump tar and storybook in /docs

[dependabot]

Removes tar. It's no longer used after updating ancestor dependency storybook. These dependencies need to be updated together.

Removes tar

Updates storybook from 7.6.21 to 10.2.17

Release notes

Sourced from storybook's releases.

v10.2.17

10.2.17

• Next.js: Add support for v16.2 - #34046, thanks @​valentinpalkovic!

v10.2.16

10.2.16

• CSF-Factories: Fix ConfigFile parser false warning on `definePreview({...}).type()` export default - #33885, thanks @​copilot-swe-agent!
• Core: Add host/origin validation to requests and websocket connections - #33835, thanks @​ghengeveld!
• Core: Add vike metadata frameworks - #33965, thanks @​yannbf!
• Core: Resolve builder preset path correctly in pnpm strict mode - #34032, thanks @​braedenfoster!
• Core: Update default allowed hosts in host validation middleware - #34045, thanks @​ghengeveld!

v10.2.15

10.2.15

• Core: Storybook failed to load iframe.html when publishing - #33896, thanks @​danielalanbates!
• Manager-API: Update refs sequentially in experimental_setFilter - #33958, thanks @​ia319!
• React: Handle render identifier in manifest snippet generation - #33940, thanks @​kasperpeulen!

v10.2.14

10.2.14

• CLI: Set STORYBOOK environment variable - #33938, thanks @​yannbf!
• UI: Prevent crash when tag filters contain undefined entries - #33931, thanks @​abhaysinh1000!

v10.2.13

10.2.13

• Addon Pseudo-states: Process all nested css rules - #33605, thanks @​hpohlmeyer!
• Builder-Vite: Prevent config duplication - #33883, thanks @​copilot-swe-agent!
• CLI: Fix React native web A11y issues - #33937, thanks @​jonniebigodes!
• Core: Avoid hanging when inferring args for recursive calls on DOM elemens - #33922, thanks @​valentinpalkovic!
• Eslint: Fix ESLint 10 compatibility in eslint-plugin-storybook rules - #33884, thanks @​copilot-swe-agent!
• Viewport: Prioritize story viewport globals and avoid user-global pollution - #33849, thanks @​ia319!

v10.2.12

10.2.12

• Core: Sanitize inputs for save from controls - #33868, thanks @​valentinpalkovic!
• Telemetry: Add project age - #33910, thanks @​shilman!
• Webpack: Improve performance of module-mocking plugins - #33169, thanks @​valentinpalkovic!

v10.2.11

10.2.11

• Addon-Vitest: Fix postinstall a11y installation - #33888, thanks @​valentinpalkovic!
• Manifests: Use correct story name - #33709, thanks @​JReinhold!
• Next.js: Handle legacyBehavior prop in Link mock component - #33862, thanks @​yatishgoel!

... (truncated)

Changelog

Sourced from storybook's changelog.

10.2.17

• Next.js: Add support for v16.2 - #34046, thanks @​valentinpalkovic!

10.2.16

• CSF-Factories: Fix ConfigFile parser false warning on definePreview({...}).type<T>() export default - #33885, thanks @​copilot-swe-agent!
• Core: Add host/origin validation to requests and websocket connections - #33835, thanks @​ghengeveld!
• Core: Add vike metadata frameworks - #33965, thanks @​yannbf!
• Core: Resolve builder preset path correctly in pnpm strict mode - #34032, thanks @​braedenfoster!
• Core: Update default allowed hosts in host validation middleware - #34045, thanks @​ghengeveld!

10.2.15

• Core: Storybook failed to load iframe.html when publishing - #33896, thanks @​danielalanbates!
• Manager-API: Update refs sequentially in experimental_setFilter - #33958, thanks @​ia319!
• React: Handle render identifier in manifest snippet generation - #33940, thanks @​kasperpeulen!

10.2.14

• CLI: Set STORYBOOK environment variable - #33938, thanks @​yannbf!
• UI: Prevent crash when tag filters contain undefined entries - #33931, thanks @​abhaysinh1000!

10.2.13

• Addon Pseudo-states: Process all nested css rules - #33605, thanks @​hpohlmeyer!
• Builder-Vite: Prevent config duplication - #33883, thanks @​copilot-swe-agent!
• CLI: Fix React native web A11y issues - #33937, thanks @​jonniebigodes!
• Core: Avoid hanging when inferring args for recursive calls on DOM elemens - #33922, thanks @​valentinpalkovic!
• Eslint: Fix ESLint 10 compatibility in eslint-plugin-storybook rules - #33884, thanks @​copilot-swe-agent!
• Viewport: Prioritize story viewport globals and avoid user-global pollution - #33849, thanks @​ia319!

10.2.12

• Core: Sanitize inputs for save from controls - #33868, thanks @​valentinpalkovic!
• Telemetry: Add project age - #33910, thanks @​shilman!
• Webpack: Improve performance of module-mocking plugins - #33169, thanks @​valentinpalkovic!

10.2.11

• Addon-Vitest: Fix postinstall a11y installation - #33888, thanks @​valentinpalkovic!
• Manifests: Use correct story name - #33709, thanks @​JReinhold!
• Next.js: Handle legacyBehavior prop in Link mock component - #33862, thanks @​yatishgoel!
• React: Fix manifest stories empty when meta has no explicit title - #33878, thanks @​kasperpeulen!

10.2.10

• Core: Require token for websocket connections - #33820, thanks @​ghengeveld!

10.2.9

... (truncated)

Commits

• 71dcfa9 Bump version from "10.2.16" to "10.2.17" [skip ci]
• 8a7f39a Bump version from "10.2.15" to "10.2.16" [skip ci]
• 70dfffb Cleanup
• 3e03e88 Core: Fix allowedHosts and address options in dev-server
• 354507c Merge pull request #34045 from storybookjs/default-allowed-hosts
• 10347fd Merge pull request #33835 from storybookjs/origin-validation
• d7a9d2e Merge pull request #34032 from braedenfoster/fix/pnpm-preset-resolution
• 1f4697d Merge pull request #33965 from storybookjs/yann/add-vike-metadata
• 9a94a3a Merge pull request #33885 from storybookjs/copilot/fix-configfile-parser-warning
• 7b4ab63 Bump version from "10.2.14" to "10.2.15" [skip ci]
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 9790dcc

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[llastflowers]

@dependabot rebase

[llastflowers]

@dependabot recreate

[llastflowers]

@dependabot recreate

[llastflowers]

@copilot can you open a PR against this one that will remove all the storybook update stuff and just keep tar at the patched version to resolve the vulnerability alert?

[Copilot]

@llastflowers I've opened a new pull request, #3015, to work on those changes. Once the pull request is ready, I'll request review from you.