Fix website security vulnerabilities

[nitrobass24]

Summary

• Run npm audit fix in website/ to resolve 4 security vulnerabilities in transitive dependencies
• brace-expansion 1.1.12 → 1.1.13 (moderate: GHSA-f886-m6hf-6m8v)
• path-to-regexp 0.1.12 → 0.1.13 (high: GHSA-37ch-88jc-xwx2)
• picomatch 2.3.1 → 2.3.2 (high: GHSA-c2c7-rcm5-vvqj, GHSA-3v7f-55p6-f55p)
• minimatch 3.1.2 → 3.1.5 (high: GHSA-3ppc-4f35-3m26)

Not fixed: serialize-javascript (requires Docusaurus upstream update — cannot fix without breaking change)

Test plan

• Verify npm audit in website/ shows reduced vulnerabilities
• Verify docs site builds successfully

🤖 Generated with Claude Code

[coderabbitai]

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (1)

• website/package-lock.json is excluded by !**/package-lock.json, !**/package-lock.json

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: ASSERTIVE

Plan: Pro

Run ID: cc978385-70a8-4921-8d35-91ac96094a27

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch fix/website-security-deps

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}