fix: replace weak hash functions with SHA-256

[guan404ming]

Checklist

• npm install && npm run lint && npm test passes
• tests are included
• documentation is changed or added
• commit message follows commit guidelines

Description of change

This PR replaces weak cryptographic hash functions (MD5 and SHA1) with SHA-256 across the node-gyp codebase to improve security. The changes affect hash generation for:

• Object ID calculation in Xcode project files
• Intermediate file naming in Makefile generation
• GUID generation for Visual Studio projects
• Build rule hashing in Ninja generator

Security Impact: Addresses potential security vulnerabilities by replacing deprecated hash functions that are susceptible to collision attacks.

Performance & Functionality: No impact on build speed or functionality. All existing features work exactly the same with stronger security guarantees.

Compatibility: Maintains full backward compatibility while using modern cryptographic standards.

[legendecas]

Would you mind submitting changes in gyp/ to https://github.com/nodejs/gyp-next first? Thank you!

[guan404ming]

Here is the pr nodejs/gyp-next#329!

[guan404ming]

I've resolved the pr conflict, thanks!

[cclauss]

I believe this can be closed because it will come into this codebase on the next sync with gyp-next.

• feat: update gyp-next to v0.21.1 #3273

[legendecas]

Synchronization done in #3273. Thank you for your work on this!

[guan404ming]

Thanks for the review and help!