Fix security vulnerabilities in prisma-iris-demo

- Update hono 4.10.6 → 4.11.5 (fixes JWT algorithm confusion CVEs)
- Update chevrotain 10.5.0 → 11.1.1 (removes vulnerable lodash dependency)
- Update lodash 4.17.21 → 4.17.23

Resolves all 3 dependabot alerts (2 high, 1 moderate)

Author: tom-dyar