fix: package.json & yarn.lock to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-BRACES-6838727
- https://snyk.io/vuln/SNYK-JS-MICROMATCH-6838728

Author: snyk-bot

package.json

@@ -6,8 +6,8 @@
     "bootprint": "^4.0.4",
     "bootprint-json-schema": "^4.0.4",
     "glob-fs": "^0.1.7",
-    "gulp": "^4.0.2",
-    "gulp-cli": "^2.3.0",
+    "gulp": "^5.0.0",
+    "gulp-cli": "^3.0.0",
     "gulp-connect": "^5.7.0",
     "http-server": "^0.12.3"
   },