Security: Fixed 17 Dependabot vulnerability alerts (dev dependencies only)
All vulnerabilities were in the build toolchain and did not affect the plugin itself. No user-facing changes.
- Added version overrides for 15 transitive packages to fix high/moderate severity issues including prototype pollution (flatted, immutable, js-yaml), ReDoS vulnerabilities (minimatch, braces, picomatch, micromatch, postcss, cross-spawn, semver, nanoid, word-wrap, brace-expansion, ajv), and a stack overflow (yaml)
- Upgraded esbuild from 0.15 → 0.25 and esbuild-sass-plugin from 2.x → 3.x to fix a moderate severity issue where esbuild's dev server could be queried by any website