fix: patch moderate/high security vulnerabilities in dependencies

[R-Delfino95]

Summary

Addresses security vulnerabilities reported by npm audit:

• undici: bumped from ^5.28.4 to ^6.23.0 to fix unbounded decompression chain (GHSA-g9mf-h72j-4rw9), HTTP request/response smuggling (GHSA-2mjp-6q6p-2qxm), and other high-severity issues
• @vercel/blob: bumped from ^2.0.0 to ^2.0.1 — this version pins undici@^6.23.0, resolving the transitive vulnerability
• @isaacs/brace-expansion and other dev dependencies: updated via npm audit fix

The undici v5 → v6 upgrade has no functional impact on this codebase. All exported APIs used (fetch, request) remain unchanged. Node.js ≥ 18 is already required by Next.js.

Closes #412
Closes #413

Test plan

• npm test passes (48 tests, 0 failures)
• npm audit no longer reports undici or @vercel/blob vulnerabilities
• Build succeeds (npm run build)

---

Note

Medium Risk
Upgrades undici to v6 and refreshes the lockfile (including AWS SDK transitive updates), which can affect runtime HTTP behavior and Node engine expectations despite no direct code changes.

Overview
This PR is a dependency/security patch update: it bumps undici from v5 to v6 and updates @vercel/blob to pick up the fixed undici version.

It also regenerates package-lock.json (and the example app lockfile), pulling in newer transitive versions (notably a large set of AWS SDK/Smithy packages and some tooling deps) and marking several packages as peer in the lock metadata.

^{Written by Cursor Bugbot for commit 2eead6a. This will update automatically on new commits. Configure here.}

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 87.29%. Comparing base (1fba45e) to head (2eead6a).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #416   +/-   ##
=======================================
  Coverage   87.29%   87.29%           
=======================================
  Files          37       37           
  Lines        3211     3211           
  Branches      472      477    +5     
=======================================
  Hits         2803     2803           
- Misses        405      408    +3     
+ Partials        3        0    -3     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[snyk-io]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[luwes]

👍