chore: bump npm deps

[hanabi1224]

Summary of changes

To fix:
https://github.com/ChainSafe/forest/security/dependabot/200
https://github.com/ChainSafe/forest/security/dependabot/199
https://github.com/ChainSafe/forest/security/dependabot/197

Changes introduced in this pull request:

Reference issue to close (if applicable)

Closes

Other information and links

Change checklist

• I have performed a self-review of my own code,
• I have made corresponding changes to the documentation. All new code adheres to the team's documentation standards,
• I have added tests that prove my fix is effective or that my feature works (if possible),
• I have made sure the CHANGELOG is up-to-date. All user-facing changes should be reflected in this document.

Outside contributions

• I have read and agree to the CONTRIBUTING document.
• I have read and agree to the AI Policy document. I understand that failure to comply with the guidelines will lead to rejection of the pull request.

Summary by CodeRabbit

• Chores
  • Updated dependency resolution configuration to ensure consistent package versioning across the project.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

Run ID: 69024ecc-d816-4104-a2ba-a8cc02647cf6

📥 Commits

Reviewing files that changed from the base of the PR and between 7f70997 and 76a66e5.

⛔ Files ignored due to path filters (1)

• docs/pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (1)

• docs/package.json

---

Walkthrough

Added a new resolutions entry for lodash-es pinned to version ^4.18.1 in docs/package.json, maintaining consistency with the existing lodash dependency resolution.

Changes

Cohort / File(s)	Summary
Dependency Resolutions docs/package.json	Added lodash-es resolution pinned to ^4.18.1 to ensure consistent version pinning across the documentation dependencies.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Suggested labels

dependencies, javascript

Suggested reviewers

• LesnyRumcajs
• sudo-shashank

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 inconclusive)

Check name	Status	Explanation	Resolution
Title check	❓ Inconclusive	The PR title 'chore: bump npm deps' is vague and generic. It describes the action taken rather than the specific change, failing to indicate which dependencies were updated or why (security vulnerability fixes).	Consider a more specific title that mentions the security context, such as 'chore: resolve Dependabot security alerts' or 'chore: pin lodash-es dependency for security'.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch hm/bump-npm-deps

✨ Simplify code

• Create PR with simplified code
• Commit simplified code in branch hm/bump-npm-deps

Warning

Review ran into problems

🔥 Problems

Timed out fetching pipeline failures after 30000ms

---

Linked repositories: Couldn't analyze ChainSafe/forest - clone failed: Clone operation failed: fatal: unable to access 'https://github.com/ChainSafe/forest.git/': Empty reply from server

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}