fix: Resolve minimatch ReDoS vulnerabilities in root and scripts

[raifdmueller]

Summary

• Fix high-severity minimatch ReDoS vulnerabilities in package-lock.json and scripts/package-lock.json
• Addresses Dependabot alerts Categorization for README #6, Organize semantic anchors into 10 domain-based categories #7, feat(test): adds mutation testing concept #10, Add Semantic Anchor: todotxt-flavoured markdown #14, Add todo.txt-flavoured markdown semantic anchor #15, Add Semantic Anchor: SOTA (State-of-the-Art) #16, Add SOTA (State-of-the-Art) semantic anchor #17

Vulnerabilities fixed:

• GHSA-3ppc-4f35-3m26 (ReDoS via repeated wildcards)
• GHSA-7r86-cg39-jmmj (ReDoS via matchOne() combinatorial backtracking)
• GHSA-23c5-xmqv-rm74 (ReDoS via nested extglobs)

Test plan

• npm audit shows 0 vulnerabilities in root
• npm audit shows 0 vulnerabilities in scripts/
• CI pipeline passes

🤖 Generated with Claude Code

[coderabbitai]

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (2)

• package-lock.json is excluded by !**/package-lock.json
• scripts/package-lock.json is excluded by !**/package-lock.json

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

• 🔍 Trigger review

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}