Chore: resolve vulnerabilities in NPM dependencies

[imrraaj]

What

This PR fixes security vulnerabilities reported by Dependabot and npm audit by running npm audit fix.

Why

Fixes dependabot alerts

How

Testing Instructions

Screenshots

Additional Info

Checklist

• I have read the Contribution Guidelines.
• I have read the Development Guidelines.
• My code is tested to the best of my abilities.
• My code passes all lints (ESLint etc.).
• My code has detailed inline documentation.
• I have updated the project documentation as needed.

[Copilot]

Pull request overview

This PR addresses Dependabot/npm audit-reported security vulnerabilities by updating transitive NPM dependencies in package-lock.json, and bumps the plugin release metadata to 1.0.3 to reflect the security maintenance release.

Changes:

• Update vulnerable NPM transitive dependencies (via npm audit fix) in package-lock.json.
• Bump plugin version references to 1.0.3 (onelogs.php, readme.txt).
• Add a 1.0.3 entry to CHANGELOG.md noting the vulnerability-related dependency updates.

Reviewed changes

Copilot reviewed 3 out of 4 changed files in this pull request and generated no comments.

File	Description
package-lock.json	Updates dependency graph to newer patched versions (e.g., fast-xml-parser, flatted) and introduces path-expression-matcher as required by updated packages.
onelogs.php	Bumps plugin header version and ONELOGS_VERSION constant to 1.0.3.
readme.txt	Updates WordPress plugin “Stable tag” to 1.0.3.
CHANGELOG.md	Adds release notes for 1.0.3 describing the security-driven dependency update.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

You can also share your feedback on Copilot code review. Take the survey.