chore: Update dependencies to resolve audit warnings

[Gudahtt]

Update dependencies that Socket warned about in #423

---

Note

Refreshes yarn.lock with updates to cross-spawn, form-data, get-intrinsic, and related transitive packages, adding helper libs and tightening mime-types range.

• Dependencies (yarn.lock):
  • Upgrades:
    • cross-spawn 7.0.3 → 7.0.6
    • form-data 3.0.1 → 3.0.4 (now depends on es-set-tostringtag, hasown; updates mime-types to ^2.1.35)
    • get-intrinsic 1.2.2 → 1.3.1 (adds multiple deps)
    • gopd 1.0.1 → 1.2.0
    • has-symbols 1.0.3 → 1.1.0
    • has-tostringtag 1.0.0 → 1.0.2
  • New transitive packages: async-function, async-generator-function, generator-function, call-bind-apply-helpers, dunder-proto, es-define-property, es-errors, es-object-atoms@1.1.1, es-set-tostringtag@2.1.0, get-proto, math-intrinsics.
  • Constraint change: mime-types consolidated to ^2.1.35.

^{Written by Cursor Bugbot for commit d530228. This will update automatically on new commits. Configure here.}

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	es-define-property@​1.0.1
	es-set-tostringtag@​2.0.1 ⏵ 2.1.0			+5
	es-errors@​1.3.0
	async-generator-function@​1.0.0
	dunder-proto@​1.0.1
	math-intrinsics@​1.1.0
	get-proto@​1.0.1
	call-bind-apply-helpers@​1.0.2
	es-object-atoms@​1.1.1
	async-function@​1.0.0
	cross-spawn@​7.0.3 ⏵ 7.0.6	+1	+22	-2
	generator-function@​2.0.1
	get-intrinsic@​1.2.2 ⏵ 1.3.1			+1
	form-data@​3.0.1 ⏵ 3.0.4		+75	+1

View full report

[socket-security]

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring alerts on:

• async-function@1.0.0

View full report

[Gudahtt]

@SocketSecurity ignore npm/async-function@1.0.0
New author OK