v1.0.6-beta.008 - Implement definitive alpine and npm patches
- Reverted base image back to node:22-alpine to shed 10+ unfixable Debian OS vulnerabilities.
- Pulled busybox directly from the Alpine Edge repository during the build to apply the bleeding-edge CVE-2025-60876 patch.
- Modified the deps stage to ignore the local package-lock.json, forcing npm to perfectly resolve the package.json overrides.
- Injected a targeted npm install in the final runner stage to guarantee picomatch and brace-expansion are patched in the production layer.