chore(dep): Resolve dependency vulnerabilities

[tkislan]

Summary by CodeRabbit

Release Notes

• Security

  • Updated security vulnerability advisory entries with revised CVE references and expiration dates.

• Chores

  • Upgraded development dependencies to latest versions and extended dependency override configurations for improved stability.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 0%. Comparing base (4cffc41) to head (87663a6).
⚠️ Report is 1 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@     Coverage Diff     @@
##   main   #362   +/-   ##
===========================
===========================

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 7b8b2c30-c1b4-4cf3-98ae-c7797a5f45d0

📥 Commits

Reviewing files that changed from the base of the PR and between 4cffc41 and 87663a6.

⛔ Files ignored due to path filters (1)

• package-lock.json is excluded by !**/package-lock.json

📒 Files selected for processing (2)

• .nsprc
• package.json

---

📝 Walkthrough

Walkthrough

Updates security configuration and project dependencies. The .nsprc file replaces one vulnerability advisory entry with another, updating the CVE identifier, affected dependency path, impact details, and expiration date. The package.json file upgrades several GitHub action devDependencies to newer versions, adds dependency overrides for undici and flatted, and corrects JSON formatting.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

🚥 Pre-merge checks | ✅ 4

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	Title directly matches the changeset: updating GHSA entries, upgrading devDependencies, and adding dependency overrides to resolve vulnerabilities.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Updates Docs	✅ Passed	PR is a dependency vulnerability remediation task with no feature implementation or public API modifications, only configuration and dependency version changes.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

📝 Coding Plan

• Generate coding plan for human review comments

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}