chore: pin dependencies and fix tar vulnerability (#31)

- Pin all dependencies in package.json to specific versions as per enterprise requirements.
- Add pnpm override for 'tar' to version 7.5.4 to fix high-severity vulnerability (Dependabot #42).
- Update pnpm-lock.yaml to reflect changes.

Author: mattinannt

package.json

@@ -13,12 +13,20 @@
   },
   "devDependencies": {
     "prettier": "3.8.1",
-    "turbo": "2.7.5",
+    "turbo": "2.7.6",
     "typescript": "5.9.3",
     "rimraf": "6.1.2"
   },
-  "packageManager": "pnpm@10.28.1",
+  "packageManager": "pnpm@10.28.2",
   "engines": {
     "node": ">=18.18.0"
+  },
+  "pnpm": {
+    "overrides": {
+      "tar": "7.5.4"
+    },
+    "comments": {
+      "overrides": "Security fixes for transitive dependencies. Remove when upstream packages update: tar (Dependabot #42) - awaiting @tailwindcss/oxide update"
+    }
   }
 }