fix(dependabot): force all tar dependencies to use the secure version

[github-actions]

Note

The pull request "fix(dependabot): force all tar dependencies to use the secure version" was created by @RulaKhaled but did not reference an issue. Therefore this issue was created for better visibility in external tools like Linear.

Attempt to fix dependabot alert https://github.com/getsentry/sentry-javascript/security/dependabot/960

[linear]

JS-1623