Before:

```
js-yaml  4.0.0 - 4.1.0
Severity: moderate
js-yaml has prototype pollution in merge (<<) - GHSA-mh29-5h37-fv8m
fix available via `npm audit fix --force`
Will install verdaccio@6.2.4, which is outside the stated dependency range
node_modules/js-yaml
  @verdaccio/config  <=8.0.0-next-8.25
  Depends on vulnerable versions of js-yaml
  node_modules/@verdaccio/config
    @verdaccio/auth  <=8.0.0-next-8.25
    Depends on vulnerable versions of @verdaccio/config
    Depends on vulnerable versions of @verdaccio/signature
    node_modules/@verdaccio/auth
      verdaccio  5.20.1 - 6.2.1 || 7.0.0-next.0 - 8.0.0-next-8.25
      Depends on vulnerable versions of @verdaccio/auth
      Depends on vulnerable versions of @verdaccio/config
      Depends on vulnerable versions of @verdaccio/middleware
      Depends on vulnerable versions of @verdaccio/signature
      Depends on vulnerable versions of @verdaccio/tarball
      Depends on vulnerable versions of @verdaccio/url
      Depends on vulnerable versions of verdaccio-audit
      node_modules/verdaccio
    @verdaccio/middleware  <=8.0.0-next-8.25
    Depends on vulnerable versions of @verdaccio/config
    Depends on vulnerable versions of @verdaccio/url
    node_modules/@verdaccio/middleware
    @verdaccio/signature  <=8.0.0-next-8.17
    Depends on vulnerable versions of @verdaccio/config
    node_modules/@verdaccio/signature
    verdaccio-audit  11.0.0-6-next.5 - 13.0.0-next-8.25
    Depends on vulnerable versions of @verdaccio/config
    node_modules/verdaccio-audit

validator  <=13.15.20
Severity: high
validator.js has a URL validation bypass vulnerability in its isURL function - GHSA-9965-vmph-33xx
Validator is Vulnerable to Incomplete Filtering of One or More Instances of Special Elements - GHSA-vghf-hv5q-vc2g
fix available via `npm audit fix --force`
Will install verdaccio@6.2.4, which is outside the stated dependency range
node_modules/validator
  @verdaccio/url  <=13.0.0-next-8.24
  Depends on vulnerable versions of validator
  node_modules/@verdaccio/url
    @verdaccio/tarball  <=13.0.0-next-8.24
    Depends on vulnerable versions of @verdaccio/url
    node_modules/@verdaccio/tarball

10 vulnerabilities (5 moderate, 5 high)
```

After:

```
audited 1450 packages in 1s

found 0 vulnerabilities
```

The override is also no longer needed.

Bumps [jws](https://github.com/brianloveswords/node-jws) from 3.2.2 to 3.2.3.
- [Release notes](https://github.com/brianloveswords/node-jws/releases)
- [Changelog](https://github.com/auth0/node-jws/blob/master/CHANGELOG.md)
- [Commits](auth0/node-jws@v3.2.2...v3.2.3)

---
updated-dependencies:
- dependency-name: jws
  dependency-version: 3.2.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Philippe Serhal <philippe.serhal@netlify.com>

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

Improved the type safety in `src/utils/parse-raw-flags.ts` by replacing `any` with more specific types.

- `raw` is now `string[]`
- The return value of `parseRawFlags` is now `Record<string, unknown>`
- `value` in `aggressiveJSONParse` is now `string`
- The return value of `aggressiveJSONParse` is now `unknown`

These changes make the code more robust and easier to maintain.

Co-authored-by: google-labs-jules[bot] <161369871+google-labs-jules[bot]@users.noreply.github.com>

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: Vaibhav Acharya <vaibhavacharya111@gmail.com>

Co-authored-by: token-generator-app[bot] <82042599+token-generator-app[bot]@users.noreply.github.com>