diff --git a/package-lock.json b/package-lock.json
index de686fb..9faf870 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -6771,16 +6771,16 @@
       }
     },
     "tar": {
-      "version": "4.4.1",
-      "resolved": "https://registry.npmjs.org/tar/-/tar-4.4.1.tgz",
-      "integrity": "sha512-O+v1r9yN4tOsvl90p5HAP4AEqbYhx4036AGMm075fH9F8Qwi3oJ+v4u50FkT/KkvywNGtwkk0zRI+8eYm1X/xg==",
+      "version": "4.4.3",
+      "resolved": "https://registry.npmjs.org/tar/-/tar-4.4.3.tgz",
+      "integrity": "sha512-LBw+tcY+/iCCTvF4i3SjqKWIgixSs/dB+Elg3BaY0MXh03D9jWclYskg3BiOkgg414NqpFI3nRgr2Qnw5jJs7Q==",
       "requires": {
         "chownr": "^1.0.1",
         "fs-minipass": "^1.2.5",
-        "minipass": "^2.2.4",
+        "minipass": "^2.3.3",
         "minizlib": "^1.1.0",
         "mkdirp": "^0.5.0",
-        "safe-buffer": "^5.1.1",
+        "safe-buffer": "^5.1.2",
         "yallist": "^3.0.2"
       },
       "dependencies": {
diff --git a/package.json b/package.json
index c453004..959bcf9 100644
--- a/package.json
+++ b/package.json
@@ -63,7 +63,7 @@
     "safe-buffer": "^5.1.2",
     "semver": "^5.5.0",
     "ssri": "^6.0.0",
-    "tar": "4.4.1",
+    "tar": "^4.4.3",
     "unique-filename": "^1.1.0",
     "which": "^1.3.0"
   },