fix(security): update brace-expansion override to >=5.0.5

[fro-bot]

Summary

Addresses GHSA-v6vh-hvxj-x9wh (Medium severity) - brace-expansion package is vulnerable to Zero-step sequence causing process hang and memory exhaustion.

Security Advisory Details

• Vulnerability: Zero-step sequence causes process hang and memory exhaustion
• Affected versions: < 5.0.5
• Fixed in: 5.0.5
• Severity: Medium

Changes

• Added `brace-expansion: >=5.0.5` to pnpm overrides in package.json

Dependency Chain

`brace-expansion` is a transitive dependency:

• `@fro-bot/.github`
  • `@bfra.me/eslint-config` → `eslint` → `@eslint/config-array` → `minimatch` → `brace-expansion`

Testing

• `pnpm check-format` passes
• `pnpm check-types` passes
• `pnpm lint` passes