fix(deps): resolve Dependabot security alerts (#10)

Update dependencies to fix 13 vulnerabilities (11 high, 2 moderate):
- eslint 9.x -> 10.x (fixes minimatch, ajv transitive vulns)
- typedoc 0.27.x -> 0.28.x (fixes minimatch transitive vuln)
- @typhonjs-typedoc/typedoc-theme-dmt 0.3.x -> 0.4.x
- @eslint/js 9.x -> 10.x
- @typescript-eslint/* 8.54.0 -> 8.56.1
- typescript-eslint 8.54.0 -> 8.56.1
- turbo 2.8.3 -> 2.8.12
- lint-staged 16.2.7 -> 16.3.0

Add pnpm overrides for remaining transitive vulnerabilities:
- rollup >=4.59.0 (path traversal)
- glob>minimatch 10.2.3 (ReDoS)
- markdown-it >=14.1.1 (ReDoS)

Preserve error cause in PEM error handling (eslint 10 rule).

Author: fbsobreira

.changeset/fix-dependabot-security.md

@@ -0,0 +1,13 @@
+---
+'@klever/connect': patch
+'@klever/connect-core': patch
+'@klever/connect-crypto': patch
+'@klever/connect-encoding': patch
+'@klever/connect-provider': patch
+'@klever/connect-transactions': patch
+'@klever/connect-contracts': patch
+'@klever/connect-wallet': patch
+'@klever/connect-react': patch
+---
+
+Fix Dependabot security alerts by updating dependencies and resolving vulnerabilities in transitive packages

package.json

@@ -39,31 +39,34 @@
   },
   "devDependencies": {
     "@changesets/cli": "^2.29.8",
-    "@eslint/js": "^9.39.2",
+    "@eslint/js": "^10.0.1",
     "@types/node": "^24.10.10",
-    "@typescript-eslint/eslint-plugin": "^8.54.0",
-    "@typescript-eslint/parser": "^8.54.0",
-    "@typhonjs-typedoc/typedoc-theme-dmt": "^0.3.1",
+    "@typescript-eslint/eslint-plugin": "^8.56.1",
+    "@typescript-eslint/parser": "^8.56.1",
+    "@typhonjs-typedoc/typedoc-theme-dmt": "^0.4.0",
     "@vitest/ui": "^3.2.4",
-    "eslint": "^9.39.2",
+    "eslint": "^10.0.2",
     "eslint-config-prettier": "^10.1.8",
     "husky": "^9.1.7",
-    "lint-staged": "^16.2.7",
+    "lint-staged": "^16.3.0",
     "prettier": "^3.8.1",
     "protobufjs": "^7.5.4",
     "protobufjs-cli": "^1.2.0",
     "tsup": "^8.5.1",
-    "turbo": "^2.8.3",
-    "typedoc": "0.27.9",
+    "turbo": "^2.8.12",
+    "typedoc": "^0.28.17",
     "typescript": "^5.9.3",
-    "typescript-eslint": "^8.54.0",
+    "typescript-eslint": "^8.56.1",
     "vite": "^7.3.1",
     "vitest": "^3.2.4"
   },
   "pnpm": {
     "overrides": {
       "glob": ">=13.0.1",
-      "@isaacs/brace-expansion": ">=5.0.1"
+      "@isaacs/brace-expansion": ">=5.0.1",
+      "rollup": ">=4.59.0",
+      "glob>minimatch": "10.2.3",
+      "markdown-it": ">=14.1.1"
     }
   }
 }

packages/connect-crypto/src/pem.ts

@@ -66,7 +66,7 @@ function parsePemBlocks(content: string): PemBlock[] {
         currentBlock.bytes = bytes
         blocks.push(currentBlock as PemBlock)
       } catch (error) {
-        throw new Error(`Invalid data in PEM block: ${String(error)}`)
+        throw new Error(`Invalid data in PEM block: ${String(error)}`, { cause: error })
       }
 
       inBlock = false
@@ -190,7 +190,7 @@ async function decryptPemBlock(block: PemBlock, password: string): Promise<PemBl
       bytes: new Uint8Array(plaintext),
     }
   } catch (error) {
-    throw new Error(`Failed to decrypt PEM block: ${String(error)}`)
+    throw new Error(`Failed to decrypt PEM block: ${String(error)}`, { cause: error })
   }
 }
 
@@ -395,6 +395,6 @@ export async function loadPrivateKeyFromPemFile(
     const content = await fs.readFile(filePath, 'utf-8')
     return loadPrivateKeyFromPem(content, options)
   } catch (error) {
-    throw new Error(`Failed to read PEM file: ${String(error)}`)
+    throw new Error(`Failed to read PEM file: ${String(error)}`, { cause: error })
   }
 }