fix(deps): resolve npm audit issues via overrides and lockfile

[Nisarg48]

• axios → 1.16.x
• lodash → 4.18.x
• fast-uri → 3.1.2
• follow-redirects → 1.16.0
• @babel/plugin-transform-modules-systemjs → 7.29.4
• vite → 6.4.x (workspace)
• postcss → 8.5.10

[Copilot]

Pull request overview

This PR updates dependency resolutions to address npm audit findings by bumping several vulnerable transitive packages via overrides and refreshing the lockfiles accordingly.

Changes:

• Updated overrides and dev dependency pin for postcss (8.5.10) and raised override targets for axios, lodash, follow-redirects, fast-uri, and @babel/plugin-transform-modules-systemjs.
• Refreshed package-lock.json to align with the new override resolutions (including updated vite resolution within the allowed range).
• Refreshed yarn.lock (but it now contains machine-specific absolute paths for workspace package entries).

Reviewed changes

Copilot reviewed 1 out of 3 changed files in this pull request and generated no comments.

File	Description
package.json	Updates postcss version and adjusts overrides to force patched dependency versions.
package-lock.json	Lockfile refresh to reflect the new override-driven dependency graph.
yarn.lock	Lockfile refresh; introduces/updates absolute local paths in workspace package keys (needs correction).

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 1 out of 3 changed files in this pull request and generated no new comments.