Package Health

tar-fs

filesystem bindings for tar-stream

Latest 3.1.3NPMNPM

90%

Total Score

Maintainer Stability
Maintainer Stability
Assesses the consistency and reliability of package maintainers

100

Dependencies
Dependencies
Evaluates the health and security of package dependencies

100

Maturity
Maturity
Indicates package age, release frequency, and adoption metrics

100

Supply Chain
Supply Chain
Evaluates supply chain security practices and risks

100

Attestations
Attestations
Measures the presence and validity of package attestations and signatures

50

Are you affected? Scan for Free

Vulnerabilities

TitleVersionsSeverity
AIKIDO-2026-414442 Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
tar-fs is vulnerable to Path Traversal in versions 3.0.0 - 3.1.2 and 0.5.1 - 2.1.4.
0.5.1 - 2.1.43.0.0 - 3.1.2
Medium
CVE-2025-59343
tar-fs is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in versions 3.0.0 - 3.1.1, 2.0.0 - 2.1.4 and 0.0.0 - 1.16.6.
0.0.0 - 1.16.62.0.0 - 2.1.43.0.0 - 3.1.1
High
CVE-2025-48387
tar-fs is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in versions 0.0.0 - 1.16.5, 2.0.0 - 2.1.3 and 3.0.0 - 3.0.9.
0.0.0 - 1.16.52.0.0 - 2.1.33.0.0 - 3.0.9
High
CVE-2024-12905
tar-fs is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in versions 0.0.0 - 1.16.4, 2.0.0 - 2.1.2 and 3.0.0 - 3.0.7.
0.0.0 - 1.16.42.0.0 - 2.1.23.0.0 - 3.0.7
High
CVE-2018-20835
tar-fs is vulnerable to Improper Input Validation in versions 0.0.0 - 1.16.2.
0.0.0 - 1.16.2
High

Package versions

Direct Dependencies

DependencyLast ReleaseScore
pump
Version ^3.0.0
tar-stream
Version ^3.1.5

Weekly Downloads

Info

Last Published
15 days ago
Created
12 years ago
Unpacked Size
0.1 MB