fix(deps): bump hono override to ^4.12.21 to clear 4 Dependabot alerts

[m1ngshum]

Summary

Closes 4 open medium Dependabot alerts (#22–#25), all in the transitive hono dependency. Bumps the pnpm overrides pin from ^4.12.18 to ^4.12.21; the lockfile now resolves hono@4.12.23.

Alert	GHSA	Fixed in
#25	GHSA-3hrh-pfw6-9m5x — Set-Cookie injection via unsanitized sameSite/priority	4.12.21
#24	GHSA-xrhx-7g5j-rcj5 — IP-restriction bypass for non-canonical IPv6	4.12.21
#23	GHSA-2gcr-mfcq-wcc3 — app.mount() mis-routes percent-encoded paths	4.12.21
#22	GHSA-f577-qrjj-4474 — JWT middleware accepts any auth scheme	4.12.21

Reachability

hono is pulled in purely transitively (@modelcontextprotocol/sdk → @hono/node-server → hono); it is not in package.json deps and is never imported in source. The CLI uses the MCP SDK as a client and never instantiates a Hono server, so practical exploitability is nil — this bump just clears the alerts.

Changes

• package.json: hono override ^4.12.18 → ^4.12.21
• pnpm-lock.yaml: regenerated (pnpm install --lockfile-only), hono 4.12.19 → 4.12.23

Test plan

• CI green (typecheck / build / test)
• Dependabot alerts [security][MEDIUM] mcpm_up MCP tool: documented guards are dead code; auto-confirms install/removal if revived #22–[security][LOW] Config backup (.bak) stores re-serialized JSON and is overwritten on every write #25 auto-close on merge