chore(deps): upgrade project dependencies to latest versions

[Sourav-kashyap]

Checklist:

• Performed a self-review of my own code
• npm test passes on your machine

Build Passed

Test Passed

[sonarqubecloud]

SonarQube reviewer guide

Summary: Upgrade GitHub Actions workflow files to use latest versions of checkout@v4 and setup-node@v4, plus update Trivy action configuration and modernize package dependencies.

Review Focus:

• GitHub Actions version changes from v3 to v4 are generally safe but ensure all workflows still function correctly
• Trivy action pinned to specific commit hash (v0.35.0) - verify this is the intended version
• Large dependency updates across the entire codebase, particularly major version bumps for commitlint, husky, and semantic-release - test thoroughly to ensure no breaking changes
• The test file change using z.object({}) instead of plain schema object needs validation

Start review at: .github/workflows/main.yaml. This file shows the pattern of changes applied across all workflow files and is the most frequently executed workflow, making it the best place to verify the GitHub Actions upgrades work correctly before checking the other workflow files.

💬 Please send your feedback

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud