[Snyk] Fix for 3 vulnerabilities

[sestinj]

Snyk has created this PR to fix 3 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• extensions/vscode/package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-15309438	828
	Command Injection SNYK-JS-SYSTEMINFORMATION-15316031	818
	Command Injection SNYK-JS-SYSTEMINFORMATION-15315971	768

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)
🦉 Command Injection

---

Continue Tasks: ❌ 7 failed — View all

---

Summary by cubic

Upgrade dependencies in the VS Code extension to fix 3 high‑severity vulnerabilities (ReDoS and command injection). No app code changes; reduces security risk.

• Dependencies

  • @electron/rebuild: ^3.7.2 → ^4.0.1 (fixes ReDoS via transitive minimatch)
  • systeminformation: ^5.30.0 → ^5.31.0 (fixes command injection)

• Migration

  • @electron/rebuild is a major bump. Do a clean install and verify builds (local and CI) still succeed.

^{Written for commit 8e90b46. Summary will update on new commits.}

[cubic-dev-ai]

No issues found across 1 file