build(deps): bundle Dependabot dependency updates (#755)

Updates multiple transitive dependencies:

Python dependencies:
- pygments 2.19.2 → 2.20.0

npm dependencies (labextension):
- handlebars 4.7.8 → 4.7.9
- picomatch 2.3.1 → 2.3.2
- flatted 3.3.3 → 3.4.2
- tar 7.5.9 → 7.5.11
- dompurify 3.3.1 → 3.3.2

Regenerates yarn.lock with updated TypeScript patch hash to fix CI lockfile validation errors that were blocking the individual Dependabot PRs.

Consolidates PRs: #735, #731, #723, #718, #703, #663

Signed-off-by: Adam Maly <amaly@redhat.com>
Co-authored-by: Claude Sonnet 4.5 <noreply@anthropic.com>

Author: ada333