chore: peer deps update

[cmwylie19]

Description

This PR update the peer dependencies in Pepr.

Introduces 4 new CVEs for stdlib

 ✔ Loaded image                                                                                                                                           pepr:dev 
 ✔ Parsed image                                                                            sha256:08a6380ecc0e1a04b3004c494a27031c8c3f43f379e7ad1cc2396682da3159e8 
 ✔ Cataloged contents                                                                             38f8709031ba2817f1377a8d94a1d0932be8243b10223b5c55844598128110ec 
   ├── ✔ Packages                        [1,235 packages]  
   ├── ✔ Executables                     [26 executables]  
   ├── ✔ File metadata                   [1,292 locations]  
   └── ✔ File digests                    [1,292 files]  
 ✔ Scanned for vulnerabilities     [57 vulnerability matches]  
   ├── by severity: 0 critical, 21 high, 29 medium, 7 low, 0 negligible
NAME           INSTALLED   FIXED IN        TYPE       VULNERABILITY        SEVERITY  EPSS           RISK   
glob           10.4.5      10.5.0          npm        GHSA-5j98-mcp5-4vw2  High      < 0.1% (17th)  < 0.1  
glob           11.0.3      11.1.0          npm        GHSA-5j98-mcp5-4vw2  High      < 0.1% (17th)  < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-61723       High      < 0.1% (6th)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-61725       High      < 0.1% (6th)   < 0.1  
libcrypto3     3.5.1-r0    3.5.4-r0        apk        CVE-2025-9230        High      < 0.1% (5th)   < 0.1  
libssl3        3.5.1-r0    3.5.4-r0        apk        CVE-2025-9230        High      < 0.1% (5th)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-58185       Medium    < 0.1% (8th)   < 0.1  
libcrypto3     3.5.1-r0    3.5.4-r0        apk        CVE-2025-9232        Medium    < 0.1% (6th)   < 0.1  
libssl3        3.5.1-r0    3.5.4-r0        apk        CVE-2025-9232        Medium    < 0.1% (6th)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-58186       Medium    < 0.1% (6th)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-61724       Medium    < 0.1% (6th)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-47912       Medium    < 0.1% (5th)   < 0.1  
stdlib         go1.23.12   1.24.9, 1.25.3  go-module  CVE-2025-58187       High      < 0.1% (1st)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-58188       High      < 0.1% (1st)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-58189       Medium    < 0.1% (4th)   < 0.1  
libcrypto3     3.5.1-r0    3.5.4-r0        apk        CVE-2025-9231        Medium    < 0.1% (2nd)   < 0.1  
libssl3        3.5.1-r0    3.5.4-r0        apk        CVE-2025-9231        Medium    < 0.1% (2nd)   < 0.1  
stdlib         go1.23.12   1.24.8, 1.25.2  go-module  CVE-2025-58183       Medium    < 0.1% (1st)   < 0.1  
busybox        1.37.0-r18  1.37.0-r20      apk        CVE-2024-58251       Low       < 0.1% (4th)   < 0.1  
busybox-binsh  1.37.0-r18  1.37.0-r20      apk        CVE-2024-58251       Low       < 0.1% (4th)   < 0.1  
ssl_client     1.37.0-r18  1.37.0-r20      apk        CVE-2024-58251       Low       < 0.1% (4th)   < 0.1  
busybox        1.37.0-r18  1.37.0-r20      apk        CVE-2025-46394       Low       < 0.1% (3rd)   < 0.1  
busybox-binsh  1.37.0-r18  1.37.0-r20      apk        CVE-2025-46394       Low       < 0.1% (3rd)   < 0.1  
ssl_client     1.37.0-r18  1.37.0-r20      apk        CVE-2025-46394       Low       < 0.1% (3rd)   < 0.1  
tar            7.5.1       7.5.2           npm        GHSA-29xp-372q-xqph  Medium    < 0.1% (0th)   < 0.1  
express        5.1.0       5.2.0           npm        GHSA-pj86-cfqh-vqx6  Low       N/A            N/A

Related Issue

Fixes #

Relates to #

Type of change

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Other (security config, docs update, etc)

Checklist before merging

• Unit, Integration, docs, adr added or updated as needed
• Contributor Guide Steps followed

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	@​typescript-eslint/​parser@​8.45.0 ⏵ 8.48.0
	esbuild@​0.25.10 ⏵ 0.27.0
	@​typescript-eslint/​eslint-plugin@​8.45.0 ⏵ 8.48.0	+1		+1
	node-forge@​1.3.1 ⏵ 1.3.2	-4	+40
	prettier@​3.6.2 ⏵ 3.7.3	-8		-3
	eslint@​9.36.0 ⏵ 9.39.1	+1			+1

View full report

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 0.00%. Comparing base (958b924) to head (d7eb207).
⚠️ Report is 4 commits behind head on main.

Additional details and impacted files

@@     Coverage Diff      @@
##   main   #2797   +/-   ##
============================
============================

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.