fix: updated the dependabot packages

[Dhruvkumar-Microsoft]

Purpose

This pull request updates several dependencies to their latest patch versions across both the frontend and backend, and adds a new authentication library to the mcp_server backend. These changes help ensure compatibility, security, and access to the latest features and bug fixes.

Dependency updates (frontend):

• Updated minimatch to version 3.1.5 in both package.json and package-lock.json for improved security and compatibility. [1] [2]

Dependency updates (backend):

• Updated python-multipart from 0.0.22 to 0.0.26 in both pyproject.toml files and requirements.txt to address potential bug fixes and improvements. [1] [2] [3]
• Updated mcp from 1.26.0 to 1.27.0 in both pyproject.toml and requirements.txt for the backend. [1] [2]

New dependency (backend):

• Added authlib==1.6.11 to the mcp_server backend dependencies, likely to support authentication features.

Does this introduce a breaking change?

• Yes
• No

How to Test

• Get the code

git clone [repo-address]
cd [repo-name]
git checkout [branch-name]
npm install

• Test the code

What to Check

Verify that the following are valid

• ...

Other Information

[Copilot]

Pull request overview

This PR updates dependency versions across the repo’s JavaScript frontend and Python backends, and introduces a new Python authentication dependency for mcp_server, primarily aligning lockfiles/manifests with Dependabot-driven upgrades.

Changes:

• Bump python-multipart from 0.0.22 → 0.0.26 across Python projects (manifests + uv.lock where applicable).
• Bump backend mcp from 1.26.0 → 1.27.0 (manifest + uv.lock).
• Add authlib==1.6.11 to src/mcp_server dependencies and update its lockfile entry; bump frontend minimatch override to 3.1.5 (and lockfile resolution).

Reviewed changes

Copilot reviewed 4 out of 8 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
src/mcp_server/uv.lock	Updates locked authlib and python-multipart versions; adds authlib to macae-mcp-server dependency metadata.
src/mcp_server/pyproject.toml	Pins python-multipart==0.0.26 and adds authlib==1.6.11 as a runtime dependency.
src/backend/uv.lock	Updates locked versions for mcp and python-multipart.
src/backend/requirements.txt	Pins python-multipart==0.0.26 and mcp==1.27.0.
src/backend/pyproject.toml	Pins python-multipart==0.0.26 and mcp==1.27.0.
src/App/uv.lock	Updates locked python-multipart version to 0.0.26.
src/App/package.json	Updates minimatch override to 3.1.5.
src/App/package-lock.json	Updates resolved minimatch package metadata to 3.1.5.

Files not reviewed (1)

• src/App/package-lock.json: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.