[Snyk] Fix for 2 vulnerabilities

[filiptronicek]

Snyk has created this PR to fix 2 vulnerabilities in the yarn dependencies of this project.

Snyk changed the following file(s):

• package.json
• yarn.lock

Note for zero-installs users

If you are using the Yarn feature zero-installs that was introduced in Yarn V2, note that this PR does not update the .yarn/cache/ directory meaning this code cannot be pulled and immediately developed on as one would expect for a zero-install project - you will need to run yarn to update the contents of the ./yarn/cache directory.
If you are not using zero-install you can ignore this as your flow should likely be unchanged.

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Improper Neutralization SNYK-JS-NEXTAUTH-13744118	688
	Improper Validation of Specified Type of Input SNYK-JS-VALIDATOR-13395830	658

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Learn about vulnerability in an interactive lesson of Snyk Learn.

[github-actions]

yarn.lock changes

Click to toggle table visibility

Name	Status	Previous	Current
@babel/runtime		7.17.9	7.28.4
@panva/hkdf		1.0.1	1.2.1
cookie		0.5.0	0.7.2
jose		4.10.3	4.15.9
next-auth		4.14.0	4.24.13
oidc-token-hash		5.0.1	5.1.1
openid-client		5.1.1	5.7.1
validator		13.7.0	13.15.20