Potential fix for code scanning alert no. 7: Unsafe shell command constructed from library input

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Signed-off-by: Mustapha BARKI <code4yo@gmail.com>

Author: akabarki76

packages/core/src/utils/editor.ts

@@ -5,7 +5,6 @@
  */
 
 import { execSync, spawn } from 'child_process';
-import * as shellQuote from 'shell-quote';
 
 export type EditorType =
   | 'vscode'
@@ -174,7 +173,6 @@ export async function openDiff(
         return new Promise((resolve, reject) => {
           const childProcess = spawn(diffCommand.command, diffCommand.args, {
             stdio: 'inherit',
-            shell: true,
           });
 
           childProcess.on('close', (code) => {