[Snyk] Fix for 3 vulnerabilities

[q1blue]

Snyk has created this PR to fix 3 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• package.json
• yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Predictable Value Range from Previous Values SNYK-JS-FORMDATA-10841150	249
	Regular Expression Denial of Service (ReDoS) SNYK-JS-BABELRUNTIME-10044504	140
	Resource Exhaustion SNYK-JS-JOSE-6419224	45

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

[changeset-bot]

⚠️ No Changeset found

Latest commit: 16e653e

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	next-auth@​4.0.0-beta.6 ⏵ 4.0.1			+1
	hasown@​2.0.2
	gopd@​1.2.0
	es-define-property@​1.0.1
	es-set-tostringtag@​2.1.0
	dezalgo@​1.0.4
	component-emitter@​1.3.0 ⏵ 1.3.1
	es-errors@​1.3.0
	side-channel-list@​1.0.0
	oidc-token-hash@​5.0.1 ⏵ 5.1.0	+1		+3
	side-channel-map@​1.0.1
	dunder-proto@​1.0.1
	math-intrinsics@​1.1.0
	get-proto@​1.0.1
	asap@​2.0.6
	side-channel-weakmap@​1.0.2
	call-bind-apply-helpers@​1.0.2
	es-object-atoms@​1.1.1
	@​paralleldrive/​cuid2@​2.2.2
	cookiejar@​2.1.3 ⏵ 2.1.4	+1	+5	+1
	mime@​2.5.2 ⏵ 2.6.0
	call-bound@​1.0.4
	qs@​6.10.1 ⏵ 6.14.0		+16
	cookie@​0.4.2
	formidable@​1.2.2 ⏵ 3.5.4				+1
	@​noble/​hashes@​1.8.0
	openid-client@​5.0.2 ⏵ 5.7.1	+1
	superagent@​6.1.0 ⏵ 10.2.3	+1			+1
	form-data@​3.0.1 ⏵ 4.0.4		+75	+1

View full report