Fix handlebars vulnerabilities by overriding to 4.7.9

Override handlebars to 4.7.9 in che-api, che-port, che-remote,
che-resource-monitor, and launcher to fix 8 vulnerabilities
including critical JS injection (CVSS 9.8) and multiple high
severity issues affecting versions 4.0.0-4.7.8.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: 2 people

code/extensions/che-api/package-lock.json

@@ -51,7 +51,8 @@
     "webpack-node-externals": "^3.0.0"
   },
   "overrides": {
-    "minimatch": "^3.1.5"
+    "minimatch": "^3.1.5",
+    "handlebars": "4.7.9"
   },
   "repository": {
     "type": "git",

code/extensions/che-api/package.json

@@ -54,7 +54,8 @@
     "jsdom": {
       "form-data": "3.0.4"
     },
-    "minimatch": "^3.1.5"
+    "minimatch": "^3.1.5",
+    "handlebars": "4.7.9"
   },
   "repository": {
     "type": "git",

code/extensions/che-port/package-lock.json

@@ -59,7 +59,8 @@
     },
     "lodash": "^4.17.23",
     "ajv": "6.14.0",
-    "minimatch": "^3.1.5"
+    "minimatch": "^3.1.5",
+    "handlebars": "4.7.9"
   },
   "repository": {
     "type": "git",

code/extensions/che-port/package.json

@@ -47,7 +47,8 @@
     "ts-jest": "29.4.5"
   },
   "overrides": {
-    "minimatch": "^3.1.5"
+    "minimatch": "^3.1.5",
+    "handlebars": "4.7.9"
   },
   "repository": {
     "type": "git",

code/extensions/che-remote/package-lock.json

@@ -52,7 +52,8 @@
       "ajv": "^8.18.0"
     },
     "ajv": "6.14.0",
-    "minimatch": "^3.1.5"
+    "minimatch": "^3.1.5",
+    "handlebars": "4.7.9"
   },
   "jest": {
     "collectCoverage": true,