fix: resolve dependabot security vulnerabilities

[devin-ai-integration]

Fix Dependabot Security Vulnerabilities

Summary

This PR resolves all 15 security vulnerabilities identified by Dependabot by updating package dependencies and replacing vulnerable packages.

Changes Made

• Replaced gulp-shell with del package: Eliminated the high-severity lodash.template vulnerability by replacing gulp-shell with the modern del package for directory cleaning
• Updated package dependencies: Ran npm audit fix to automatically update vulnerable transitive dependencies
• Updated gulpfile.js: Modified the clean-dist task to use deleteAsync from the del package instead of shell commands

Security Fixes

• ✅ 15 vulnerabilities resolved (was showing 15 high/critical/moderate severity issues)
• ✅ 0 vulnerabilities remaining (confirmed via npm audit)
• ✅ Eliminated critical lodash.template command injection vulnerability
• ✅ Fixed socket.io-parser, follow-redirects, and other transitive dependency vulnerabilities

Testing

• ✅ npm test passes (linting and style checks)
• ✅ npm run build completes successfully
• ✅ All gulp tasks work correctly with updated dependencies
• ✅ No breaking changes introduced

Compatibility

• Node.js engine requirements remain unchanged (>=20.0.0)
• All existing functionality preserved
• Build process works identically to before
• Only internal dependency changes, no API changes

Link to Devin run

https://app.devin.ai/sessions/2d47ced519c44f2e8af681e70fce2c79

Requested by: ateliee (ateliee@gmail.com)

[devin-ai-integration]

🤖 Devin AI Engineer

I'll be helping with this pull request! Here's what you should know:

✅ I will automatically:

• Address comments on this PR. Add '(aside)' to your comment to have me ignore it.
• Look at CI failures and help fix them

Note: I can only respond to comments from users who have write access to this repository.

⚙️ Control Options:

• Disable automatic comment and CI monitoring