chore: bump dependency overrides and packageManager

[sriramveeraghanta]

Summary

• Bump pinned overrides: lodash-es 4.17.23 → 4.18.1, add dompurify 3.4.0 and vite 6.4.2
• Update packageManager to pnpm 10.33.0
• Refresh pnpm-lock.yaml accordingly

These override bumps pick up upstream security and maintenance fixes (GitHub reports 8 Dependabot vulnerabilities on the default branch).

Test plan

• pnpm install --frozen-lockfile succeeds in CI
• pnpm check:format passes
• pnpm build (VitePress) completes successfully
• pnpm dev renders the site locally without regressions

Summary by CodeRabbit

• Chores
  • Upgraded package manager to pnpm 10.33.0
  • Updated project dependencies and added overrides to ensure application stability

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
developer-docs	Ready	Preview, Comment	Apr 21, 2026 11:09am

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: fe9d8db5-3dac-480f-8628-5e0eadea9dfa

📥 Commits

Reviewing files that changed from the base of the PR and between a06dfc7 and 27e075b.

⛔ Files ignored due to path filters (1)

• pnpm-lock.yaml is excluded by !**/pnpm-lock.yaml

📒 Files selected for processing (1)

• package.json

---

📝 Walkthrough

Walkthrough

Updated package.json to bump lodash-es from version 4.17.23 to 4.18.1, added dependency overrides for dompurify@3.4.0 and vite@6.4.2, and updated the package manager version from pnpm@10.30.3 to pnpm@10.33.0.

Changes

Cohort / File(s)	Summary
Package Manager & Dependency Overrides package.json	Updated packageManager to pnpm@10.33.0, bumped lodash-es override to 4.18.1, added new overrides for dompurify@3.4.0 and vite@6.4.2, kept esbuild override at 0.25.0.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Poem

🐰 A hop and a skip through version lanes,
Where lodash dances, pnpm reigns,
New overrides bloom in the config night,
Dependencies shimmer, all snug and tight! 🌟

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main changes: bumping dependency overrides (lodash-es, dompurify, vite) and updating the packageManager field to pnpm 10.33.0.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch chore/bump-deps-security

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}