fix(deps): update transient dependencies flatted & undici

[MikeMcC399]

Situation

npm audit reports several high severity vulnerabilities:

$ npm audit
# npm audit report

flatted  <3.4.0
Severity: high
flatted vulnerable to unbounded recursion DoS in parse() revive phase - https://github.com/advisories/GHSA-25h7-pfq9-p65f
fix available via `npm audit fix`
node_modules/flatted

undici  <=6.23.0 || 7.0.0 - 7.23.0
Severity: high
Undici: Malicious WebSocket 64-bit length overflows parser and crashes the client - https://github.com/advisories/GHSA-f269-vfmq-vjvj
Undici: Malicious WebSocket 64-bit length overflows parser and crashes the client - https://github.com/advisories/GHSA-f269-vfmq-vjvj
Undici has an HTTP Request/Response Smuggling issue - https://github.com/advisories/GHSA-2mjp-6q6p-2qxm
Undici has an HTTP Request/Response Smuggling issue - https://github.com/advisories/GHSA-2mjp-6q6p-2qxm
Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression - https://github.com/advisories/GHSA-vrm6-8vpv-qv8q
Undici has Unbounded Memory Consumption in WebSocket permessage-deflate Decompression - https://github.com/advisories/GHSA-vrm6-8vpv-qv8q
Undici has Unhandled Exception in WebSocket Client Due to Invalid server_max_window_bits Validation - https://github.com/advisories/GHSA-v9p9-hfj2-hcw8
Undici has Unhandled Exception in WebSocket Client Due to Invalid server_max_window_bits Validation - https://github.com/advisories/GHSA-v9p9-hfj2-hcw8
Undici has CRLF Injection in undici via `upgrade` option - https://github.com/advisories/GHSA-4992-7rv2-5pvq
Undici has CRLF Injection in undici via `upgrade` option - https://github.com/advisories/GHSA-4992-7rv2-5pvq
Undici has Unbounded Memory Consumption in its DeduplicationHandler via Response Buffering that leads to DoS - https://github.com/advisories/GHSA-phc3-fgpg-7m6h
fix available via `npm audit fix`
node_modules/@actions/http-client/node_modules/undici
node_modules/cheerio/node_modules/undici

2 high severity vulnerabilities

To address all issues, run:
  npm audit fix

Change

Execute npm audit fix on root of repository. This updates the transient dependencies:

• flatted to 3.4.1
• undici to 6.24.0 and 7.24.1

---

Note

Low Risk
Low risk lockfile-only dependency updates to address known DoS/smuggling vulnerabilities in transitive packages; primary risk is unexpected behavior changes in tooling/network clients due to undici version bumps.

Overview
Updates the npm lockfile to pull in patched transitive versions of flatted (3.4.1) and undici (6.24.0 and 7.24.1 via nested deps), addressing npm audit-reported high severity issues.

No application logic changes; this is a dependency resolution/lockfile refresh only.

^{Written by Cursor Bugbot for commit 642537e. This will update automatically on new commits. Configure here.}

[cypress-app-bot]

• Create a Draft Pull Request if your PR is not ready for review. Mark the PR as Ready for Review when you're ready for a Cypress team member to review the PR.

[github-actions]

🎉 This PR is included in version 7.1.6 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀