Security updates (#6)

* Upgrade to Node.js 20

* Security updates

This update was performed by running `npm audit fix`.

`npm audit` results:

```

@adobe/css-tools  <=4.3.1
Severity: moderate
@adobe/css-tools Regular Expression Denial of Service (ReDOS) while Parsing CSS - GHSA-hpx4-r86g-5jrg
@adobe/css-tools Improper Input Validation and Inefficient Regular Expression Complexity - GHSA-prr3-c3m5-p7q2
fix available via `npm audit fix`
node_modules/@adobe/css-tools

axios  1.0.0 - 1.5.1
Severity: moderate
Axios Cross-Site Request Forgery Vulnerability - GHSA-wf5p-g6vw-rhxx
fix available via `npm audit fix`
node_modules/axios

crypto-js  <4.2.0
Severity: critical
crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard - GHSA-xwcq-pm8m-c4vf
fix available via `npm audit fix`
node_modules/crypto-js

express  <4.19.2
Severity: moderate
Express.js Open Redirect in malformed URLs - GHSA-rv95-896h-c2vc
fix available via `npm audit fix`
node_modules/express

follow-redirects  <=1.15.5
Severity: moderate
Follow Redirects improperly handles URLs in the url.parse() function - GHSA-jchw-25xp-jwwc
follow-redirects' Proxy-Authorization header kept across hosts - GHSA-cxjh-pqwp-8mfp
fix available via `npm audit fix`
node_modules/follow-redirects

graphql  16.3.0 - 16.8.0
Severity: moderate
graphql Uncontrolled Resource Consumption vulnerability - GHSA-9pv7-vfvm-6vr7
fix available via `npm audit fix`
node_modules/graphql

semver  <5.7.2 || >=6.0.0 <6.3.1
Severity: moderate
semver vulnerable to Regular Expression Denial of Service - GHSA-c2qf-rxjj-qqgw
semver vulnerable to Regular Expression Denial of Service - GHSA-c2qf-rxjj-qqgw
fix available via `npm audit fix`
node_modules/@babel/core/node_modules/semver
node_modules/@babel/eslint-parser/node_modules/semver
node_modules/@babel/helper-compilation-targets/node_modules/semver
node_modules/@babel/helper-create-class-features-plugin/node_modules/semver
node_modules/eslint-plugin-import/node_modules/semver
node_modules/eslint-plugin-jsx-a11y/node_modules/semver
node_modules/eslint-plugin-node/node_modules/semver
node_modules/eslint-plugin-react/node_modules/semver
node_modules/make-dir/node_modules/semver
node_modules/normalize-package-data/node_modules/semver
node_modules/npm-run-all/node_modules/semver

tar  <6.2.1
Severity: moderate
Denial of service while parsing a tar file due to lack of folders count validation - GHSA-f5x3-32g6-xq36
fix available via `npm audit fix`
node_modules/tar

vite  4.0.0 - 4.5.2
Severity: moderate
Vite's `server.fs.deny` did not deny requests for patterns with directories. - GHSA-8jhw-289h-jh2g
fix available via `npm audit fix`
node_modules/@vanilla-extract/integration/node_modules/vite
node_modules/vite-node/node_modules/vite

word-wrap  <1.2.4
Severity: moderate
word-wrap vulnerable to Regular Expression Denial of Service - GHSA-j8xg-fqg3-53r7
fix available via `npm audit fix`
node_modules/word-wrap

zod  <=3.22.2
Zod denial of service vulnerability - GHSA-m95q-7qp3-xv42
fix available via `npm audit fix`
node_modules/zod

11 vulnerabilities (1 low, 9 moderate, 1 critical)
```

.github/workflows/deploy.yml

@@ -23,7 +23,7 @@ jobs:
       - name: ⎔ Setup node
         uses: actions/setup-node@v3
         with:
-          node-version: 18
+          node-version: 20
 
       - name: 📥 Download deps
         uses: bahmutov/npm-install@v1
@@ -41,7 +41,7 @@ jobs:
       - name: ⎔ Setup node
         uses: actions/setup-node@v3
         with:
-          node-version: 18
+          node-version: 20
 
       - name: 📥 Download deps
         uses: bahmutov/npm-install@v1

.tool-versions

@@ -1,2 +1,2 @@
-nodejs 18.16.0
+nodejs 20.12.2
 java openjdk-17