Transitive vuln: brace-expansion@2.0.2 via @vue/language-cor -> minimatch

### Describe the bug

Vulnerability reported in vite-plugin-dts@4.5.4 which is coming from transitive dependancy "brace-expansion"

└─┬ vite-plugin-dts@4.5.4
  └─┬ @vue/language-core@2.2.0
    └─┬ minimatch@9.0.5
      └── brace-expansion@2.0.2

### Reproduction

https://security.snyk.io/package/npm/brace-expansion

### Steps to reproduce

_No response_

### System Info

```shell
Browser Chrome
Package - vite-plugin-dts@4.5.4
```

### Validations

- [x] Read the [FAQ](https://github.com/qmhc/vite-plugin-dts#faq).
- [x] Check that there isn't [already an issue](https://github.com/qmhc/vite-plugin-dts/issues) that reports the same bug to avoid creating a duplicate.
- [x] The provided reproduction is a [minimal reproducible example](https://stackoverflow.com/help/minimal-reproducible-example) of the bug.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Transitive vuln: brace-expansion@2.0.2 via @vue/language-cor -> minimatch #466

Describe the bug

Reproduction

Steps to reproduce

System Info

Validations

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Transitive vuln: brace-expansion@2.0.2 via @vue/language-cor -> minimatch #466

Description

Describe the bug

Reproduction

Steps to reproduce

System Info

Validations

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions