[Snyk] Fix for 3 vulnerabilities

[sestinj]

Snyk has created this PR to fix 3 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• core/package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Uncontrolled Recursion SNYK-JS-AXIOS-16299923	828
	Improperly Controlled Modification of Dynamically-Determined Object Attributes SNYK-JS-AXIOS-16299921	808
	Prototype Pollution SNYK-JS-AXIOS-16299904	741

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Improperly Controlled Modification of Dynamically-Determined Object Attributes

---

Summary by cubic

Upgraded axios to 1.15.2 to fix three high/critical vulnerabilities and reduce security risk. Also bumped vectordb to 0.21.2 to keep dependencies current.

• Dependencies
  • axios: ^1.6.7 → ^1.15.2 (fixes prototype pollution, mass assignment, uncontrolled recursion: SNYK-JS-AXIOS-16299904/16299921/16299923)
  • vectordb: 0.4.20 → 0.21.2

^{Written for commit 252e287. Summary will update on new commits.}

[continue]

Docs Review

No documentation updates needed for this PR.

Reason: This is a security dependency upgrade (axios ^1.6.7 → ^1.15.2, vectordb 0.4.20 → 0.21.2) that patches internal vulnerabilities. These changes don't affect any public APIs, configuration options, or user-facing behavior—they're purely internal dependency maintenance.

[cubic-dev-ai]

No issues found across 1 file