chore: resolve open dependabot security alerts

[jonathannorris]

Summary

Resolved open Dependabot security alerts by updating the direct postcss dependency and adding resolutions to pin transitive dependencies to patched versions.

Note: alert #80 (tsup DOM clobbering, low) has no patched version available and is skipped. Alerts #108 and #104 (mermaid) are already fixed by the direct mermaid@11.10.0 dependency.

Alert	Package	Severity	Fix
#204	fast-xml-builder	medium	Pinned to >=1.1.7 via resolutions
#203	ip-address	medium	Pinned to >=10.1.1 via resolutions
#202	postcss	medium	Bumped direct dep to ^8.5.10; forced via resolutions
#131	webpack	low	Pinned to >=5.104.1 via resolutions
#130	webpack	low	Pinned to >=5.104.1 via resolutions
#113	js-yaml	medium	Pinned to >=4.1.1 via resolutions

[netlify]

✅ Deploy Preview for openfeature ready!

Name	Link
🔨 Latest commit	7dc35a3
🔍 Latest deploy log	https://app.netlify.com/projects/openfeature/deploys/69fe3fd9286f010008a12986
😎 Deploy Preview	https://deploy-preview-1381--openfeature.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.
🤖 Make changes	Run an agent on this branch

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[gemini-code-assist]

Code Review

This pull request updates several dependencies, including postcss, and adds new entries to package.json to address transitive dependency issues. Feedback indicates that these security fixes were incorrectly added to a dependency block instead of a resolutions field; specifically, using a resolution selector like styled-components/postcss as a package name will cause installation failures, and some additions are redundant.