deps: bump @vscode/vsce from 2.32.0 to 3.7.1 in /vscode-mdl

[dependabot]

Bumps @vscode/vsce from 2.32.0 to 3.7.1.

Release notes

Sourced from @​vscode/vsce's releases.

v3.7.1

Changes:

• #1223: Bump js-yaml
• #1222: Bump glob

This list of changes was auto generated.

v3.7.1-1

Changes:

• #1223: Bump js-yaml

This list of changes was auto generated.

v3.7.1-0

Changes:

• #1222: Bump glob

This list of changes was auto generated.

v3.7.0

Changes:

• #1219: Remove invalid validation for extension dependencies
• #1212: Validate extension dependencies use lowercase letters and warn about deprecated github.copilot
• #1209: Bump validator from 13.9.0 to 13.15.20
• #1200: Bump tar-fs from 2.1.3 to 2.1.4

This list of changes was auto generated.

v3.6.3-3

Changes:

• #1219: Remove invalid validation for extension dependencies

This list of changes was auto generated.

v3.6.3-2

... (truncated)

Commits

• 44181d1 Merge pull request #1223 from microsoft/dependabot/npm_and_yarn/multi-75e6bc5210
• a831389 Bump js-yaml
• 5d9e78f Merge pull request #1222 from microsoft/dependabot/npm_and_yarn/multi-12cb0b0c21
• c9023e9 Bump glob
• 8551fa2 Merge pull request #1219 from microsoft/benibenj/handsome-pike
• 7b65808 remove tests
• be09f0f remove invalid validation
• 196cce4 Merge pull request #1212 from microsoft/copilot/validate-extension-dependenci...
• 82c80d6 💄
• 0b7a9eb fix warning
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by microsoft1es, a new releaser for @​vscode/vsce since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

AI Code Review

Critical Issues

• None

Moderate Issues

• None

Minor Issues

• None

What Looks Good

• The PR is a straightforward dependency bump (@vscode/vsce from 2.22.0 to 3.7.1) in the VS Code extension's devDependencies
• This is a routine maintenance update with no functional changes to the extension code
• The change is isolated to package.json and follows standard version bump practices
• As a devDependency, this only affects extension development/packaging, not runtime functionality
• Dependabot-generated PRs are reliable for dependency updates

Recommendation
Approve - this is a safe, non-functional dependency update that requires no further changes.

---

Automated review via OpenRouter (Nemotron Super 120B) — workflow source