fix(deps): resolve security vulnerabilities in transitive dependencies

Add pnpm overrides to patch vulnerable dev dependencies:
- lodash: 4.17.21 → 4.17.23 (prototype pollution in _.unset/_.omit)
- undici: 6.21.3 → 6.23.0 (unbounded decompression chain DoS)
- glob: 10.4.5 → 10.5.0 (command injection via -c/--cmd)

Also updates direct dev dependencies:
- @biomejs/biome: 2.2.5 → 2.3.8
- nano-staged: 0.8.0 → 0.9.0
- release-it: 19.0.5 → 19.1.0

Resolves GitHub Dependabot alerts #23, #24, #25.

Author: oorabona

package.json

@@ -114,5 +114,12 @@
   "simple-git-hooks": {
     "pre-commit": "pnpm exec nano-staged"
   },
+  "pnpm": {
+    "overrides": {
+      "lodash": "^4.17.23",
+      "undici": "^6.23.0",
+      "glob": "^10.5.0"
+    }
+  },
   "packageManager": "pnpm@10.15.0+sha512.486ebc259d3e999a4e8691ce03b5cac4a71cbeca39372a9b762cb500cfdf0873e2cb16abe3d951b1ee2cf012503f027b98b6584e4df22524e0c7450d9ec7aa7b"
 }