🤖🔵 fix: Resolve open Dependabot vulnerabilities for tar and lodash

Remove @yarnpkg/pnpify and @yarnpkg/sdks to eliminate @yarnpkg/core → tar@6 chain.
Update lodash to 4.17.23.

Fixes: CVE-2026-26960, CVE-2026-24842, CVE-2026-23950, CVE-2026-23745, CVE-2025-13465
Co-authored-by: Cursor <cursoragent@cursor.com>

Author: dmattia