Fix npm vulnerabilities and ignore low-risk undici CVE

- Resolve critical fast-xml-parser DoS and entity expansion vulnerabilities
- Resolve high minimatch ReDoS vulnerabilities
- Resolve moderate ajv ReDoS vulnerabilities
- Rebuild dist with patched dependencies
- Ignore GHSA-g9mf-h72j-4rw9 (undici fetch only calls GitHub API)

Author: varunsh-coder