fix: resolve npm audit vulnerabilities via dependency overrides

## Summary

`npm audit` reports vulnerabilities in transitive dependencies. Pin affected packages to patched versions using npm `overrides` to eliminate all reported vulnerabilities.

## Vulnerabilities

| Package | Override From | Override To | Advisory |
|---|---|---|---|
| `picomatch` (^2) | inherited | 2.3.2 | ReDoS |
| `picomatch` (^4) | inherited | 4.0.4 | ReDoS |
| `smol-toml` | inherited | 1.6.1 | Prototype pollution |
| `yaml` | inherited | 2.8.3 | Code execution via crafted YAML |

## Acceptance Criteria

- [ ] `npm audit` reports 0 vulnerabilities
- [ ] All existing linting and validation checks pass
- [ ] No breaking changes to runtime behavior

## Notes

- Overrides are the recommended npm mechanism for pinning transitive dependency versions without forking direct dependencies.
- The `.cspell.json` dictionary also needs `smol` added since the `smol-toml` package name triggers a spell-check failure.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: resolve npm audit vulnerabilities via dependency overrides #1199

Summary

Vulnerabilities

Acceptance Criteria

Notes

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Package	Override From	Override To	Advisory
`picomatch` (^2)	inherited	2.3.2	ReDoS
`picomatch` (^4)	inherited	4.0.4	ReDoS
`smol-toml`	inherited	1.6.1	Prototype pollution
`yaml`	inherited	2.8.3	Code execution via crafted YAML

fix: resolve npm audit vulnerabilities via dependency overrides #1199

Description

Summary

Vulnerabilities

Acceptance Criteria

Notes

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions