chore(deps): bump tar, semantic-release, @semantic-release/commit-analyzer, @semantic-release/git, @semantic-release/github and @semantic-release/npm

[dependabot]

Removes tar. It's no longer used after updating ancestor dependencies tar, semantic-release, @semantic-release/commit-analyzer, @semantic-release/git, @semantic-release/github and @semantic-release/npm. These dependencies need to be updated together.

Removes tar

Updates semantic-release from 17.4.7 to 25.0.3

Release notes

Sourced from semantic-release's releases.

v25.0.3

25.0.3 (2026-01-30)

Bug Fixes

• deps: remove deprecated semver-diff (#3980) (f404124)

v25.0.2

25.0.2 (2025-11-07)

Bug Fixes

• deps: update dependency read-package-up to v12 (#3935) (1494cb9)

v25.0.1

25.0.1 (2025-10-19)

Bug Fixes

• deps: update to the latest version of the npm plugin to add trusted publishing support (fad173e), closes semantic-release/npm#958

v25.0.1-beta.3

25.0.1-beta.3 (2025-10-19)

Bug Fixes

• deps: update to latest npm plugin (a96aced)

v25.0.1-beta.2

25.0.1-beta.2 (2025-10-19)

Bug Fixes

• deps: update to the stable version of the npm plugin to add trusted publishing support (fad173e), closes semantic-release/npm#958

v25.0.1-beta.1

25.0.1-beta.1 (2025-10-16)

Bug Fixes

• deps: update to the beta of the npm plugin (c770748), closes semantic-release/npm#958

... (truncated)

Commits

• f404124 fix(deps): remove deprecated semver-diff (#3980)
• fef7e34 docs: warn against using registry-url in setup-node (#4024)
• 699d470 chore(deps): update dependency lockfile-lint to v5 (#4022)
• c7c6f7a chore(deps): update dependency tempy to v3.1.2 (#4021)
• 1ce5088 ci(action): update github/codeql-action action to v4.32.0 (#4019)
• 9bb0d87 chore(deps): lock file maintenance (#4016)
• 490171c chore(deps): update npm to v11.8.0 (#4015)
• f6411e9 chore(deps): update dependency prettier to v3.8.1 (#4014)
• c71c576 chore(deps): update dependency publint to v0.3.17 (#4013)
• 989e18c chore(deps): update dependency tempy to v3.1.1 (#4012)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for semantic-release since your current version.

Updates @semantic-release/commit-analyzer from 8.0.1 to 13.0.1

Release notes

Sourced from @​semantic-release/commit-analyzer's releases.

v13.0.1

13.0.1 (2025-01-03)

Bug Fixes

• deps: update dependency import-from-esm to v2 (#741) (f106b76)

v13.0.0

13.0.0 (2024-05-31)

Bug Fixes

• log the raw message again (e2f5d6c)

Features

• support latest conventional-changelog packages (0254d7a)

BREAKING CHANGES

• by supporting the latest major versions of conventional-changelog packages, we are dropping support for previous major versions of those packages due to the breaking changes between majors. this only impacts your project if you are installing alongside semantic-release, so updating those packages to latest version should be the only change you need for this update. no action should be necessary if you are using default semantic-release config

v13.0.0-beta.2

13.0.0-beta.2 (2024-05-25)

Bug Fixes

• log the raw message again (e2f5d6c)

v13.0.0-beta.1

13.0.0-beta.1 (2024-05-25)

Features

• support latest conventional-changelog packages (0254d7a)

BREAKING CHANGES

• by supporting the latest major versions of conventional-changelog packages, we are

... (truncated)

Commits

• f106b76 fix(deps): update dependency import-from-esm to v2 (#741)
• 5aa3378 chore(deps): lock file maintenance (#740)
• 87a21b4 chore(deps): lock file maintenance (#739)
• 780e812 chore(deps): update dependency npm-run-all2 to v7.0.2 (#737)
• b6474d1 chore(deps): update npm to v11 (#738)
• 9877406 chore(deps): lock file maintenance (#736)
• 59944a4 chore(deps): lock file maintenance (#735)
• 0de7ba6 chore(deps): update dependency c8 to v10.1.3 (#734)
• b8d058d chore(deps): lock file maintenance (#733)
• 2a1ed4b chore(deps): update npm to v10.9.2 (#732)
• Additional commits viewable in compare view

Updates @semantic-release/git from 9.0.1 to 10.0.1

Release notes

Sourced from @​semantic-release/git's releases.

v10.0.1

10.0.1 (2021-10-30)

Bug Fixes

• deps: update dependency @​semantic-release/error to v3 (#295) (3e934d4)

v10.0.0

10.0.0 (2021-09-20)

Features

• node-version: raised the minimum required version to v14.17 (7ab65f8)

BREAKING CHANGES

• node-version: the minimum required version of node is now v14.17

Commits

• 3e934d4 fix(deps): update dependency @​semantic-release/error to v3 (#295)
• 01aad76 chore(deps): lock file maintenance (#304)
• eae607b chore(deps): lock file maintenance (#302)
• f9e1a09 chore(deps): lock file maintenance (#301)
• 51280ff chore(deps): lock file maintenance (#300)
• 7a41029 chore(deps): lock file maintenance (#299)
• 7ab65f8 feat(node-version): raised the minimum required version to v14.17
• 9105df6 chore(deps): lock file maintenance (#296)
• fccf23d build(release.yml): set node-version to 16
• 9d20879 chore(deps): lock file maintenance (#294)
• Additional commits viewable in compare view

Updates @semantic-release/github from 7.2.3 to 12.0.6

Release notes

Sourced from @​semantic-release/github's releases.

v12.0.6

12.0.6 (2026-02-12)

Bug Fixes

• latest: add make_latest property to the GH release PATCH request during publish (#1169) (f516337)

v12.0.5

12.0.5 (2026-02-07)

Bug Fixes

• latest: add make_latest property to the GH release POST request during publish (#1157) (38051ba)

v12.0.4

12.0.4 (2026-02-06)

Bug Fixes

• remove failTitle arg in findSRIssues call (#1164) (f7bdd88)

v12.0.3

12.0.3 (2026-01-30)

Bug Fixes

• extend GraphQL alias prefix to prevent hash collisions (#1134) (ea6386d)

v12.0.2

12.0.2 (2025-11-08)

Bug Fixes

• add undici ProxyAgent support for GitHub Enterprise Server behind proxies (#1104) (15def77)

v12.0.1

12.0.1 (2025-10-31)

Bug Fixes

• deps: update dependency @​octokit/plugin-paginate-rest to v14 (#1112) (8df8d4a)

v12.0.0

12.0.0 (2025-10-15)

... (truncated)

Commits

• f516337 fix(latest): add make_latest property to the GH release PATCH request during ...
• f367e3a chore(deps): lock file maintenance (#1168)
• 5ba629b chore(deps): update dependency cpy to v13.2.0 (#1167)
• dfc7aa0 chore(deps): update npm to v11.9.0 (#1166)
• ed2b0bd chore(deps): update dependency cpy to v13.1.0 (#1165)
• 38051ba fix(latest): add make_latest property to the GH release POST request during...
• be62f5e chore(deps): update dependency cpy to v13 (#1161)
• f7bdd88 fix: remove failTitle arg in findSRIssues call (#1164)
• fce4835 chore(deps): update dependency tempy to v3.2.0 (#1162)
• e044f74 chore(deps): update dependency semantic-release to v25.0.3 (#1159)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​semantic-release/github since your current version.

Updates @semantic-release/npm from 7.1.3 to 13.1.5

Release notes

Sourced from @​semantic-release/npm's releases.

v13.1.5

13.1.5 (2026-03-01)

Bug Fixes

• deps: update dependency normalize-url to v9 (#1095) (daec492)

v13.1.4

13.1.4 (2026-02-06)

Bug Fixes

• deps: update dependency @​actions/core to v3 (#1085) (17abfe1)

v13.1.3

13.1.3 (2025-12-12)

Bug Fixes

• deps: update dependency @​actions/core to v2 (#1055) (fa4a3ab)

v13.1.2

13.1.2 (2025-11-14)

Bug Fixes

• deps: update dependency read-pkg to v10 (#1032) (f3f1a00)

v13.1.1

13.1.1 (2025-10-19)

Bug Fixes

• publish-dry-run: temporarily remove the addition of dry-running the publish step (30bd176)

v13.1.0

13.1.0 (2025-10-19)

Features

• trusted-publishing: verify auth, considering OIDC vs tokens from various registries (e3319f1), closes #958
• trusted-publishing: refine the messages for related errors (316ce21), closes #958
• trusted-publishing: make request to verify if OIDC token exchange can succeed (c80ecb0), closes #958
• trusted-publishing: pass id-token as bearer header for github actions (d83b727), closes #958
• trusted-publishing: pass id-token as bearer header for gitlab pipelines (6d1c3cf), closes #958

... (truncated)

Commits

• daec492 fix(deps): update dependency normalize-url to v9 (#1095)
• af8362f chore(deps): update dependency strip-ansi to v7.2.0 (#1098)
• 7354e11 chore(deps): update node.js to v24 (#1027)
• 2c4d2c9 chore(deps): update npm to v11.11.0 (#1097)
• 95ba689 chore(deps): update dependency c8 to v11 (#1096)
• 5d32912 chore(deps): update npm to v11.10.1 (#1094)
• 54f908c chore(deps): lock file maintenance (#1093)
• 91e1f14 chore(deps): update npm to v11.10.0 (#1092)
• 0d7d37e chore(deps): lock file maintenance (#1089)
• c5411cc chore(deps): update npm to v11.9.0 (#1088)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​semantic-release/npm since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Looks like these dependencies are up-to-date now, so this is no longer needed.