[Snyk] Fix for 2 vulnerabilities

[sestinj]

Snyk has created this PR to fix 2 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• core/package.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Regular Expression Denial of Service (ReDoS) SNYK-JS-MINIMATCH-15353387	828
	Inefficient Algorithmic Complexity SNYK-JS-MINIMATCH-15353389	828

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Regular Expression Denial of Service (ReDoS)

---

Continue Tasks: ❌ 7 failed — View all

---

Summary by cubic

Upgraded @sentry/vite-plugin and google-auth-library in core/package.json to fix two minimatch vulnerabilities (ReDoS and inefficient algorithmic complexity) via transitive updates. Reduces security risk; the Sentry plugin major bump may need a quick config check.

• Dependencies

  • @sentry/vite-plugin: ^4.0.2 → ^5.0.0
  • google-auth-library: ^10.4.1 → ^10.6.1

• Migration

  • Verify Vite build with @sentry/vite-plugin v5.
  • Confirm Sentry plugin config compatibility.
  • Smoke test auth flows using google-auth-library.

^{Written for commit ad2639e. Summary will update on new commits.}

[cubic-dev-ai]

No issues found across 1 file