How to fix NPM package Tar, with high vulnerability about Arbitrary File Overwrite, when package is up to date?

The issue is being tracked on the gitgub page

Please update the value for "tar" in your "package-lock.json" file. And to verify, run "[npm audit][1]".

"tar": {
      "version": "4.4.8",
      "resolved": "",
      "integrity": "value",
      "dev": true,
      "optional": true,
      "requires": {
        "block-stream": "*",
        "fstream": "^1.0.2",
        "inherits": "2"

In your package-lock.jason update tar for node to below (v 4.4.8):

"version": "4.4.8", "resolved": ""