diff --git a/packages/cli-command/package.json b/packages/cli-command/package.json
index cc94ef17f..7d69e694e 100644
--- a/packages/cli-command/package.json
+++ b/packages/cli-command/package.json
@@ -27,7 +27,6 @@
     ".": "./dist/index.js",
     "./flags": "./dist/flags.js",
     "./utils": "./dist/utils.js",
-    "./smartsnap": "./dist/smartsnap.js",
     "./test/helpers": "./test/helpers.js"
   },
   "scripts": {
@@ -39,11 +38,6 @@
   "dependencies": {
     "@percy/config": "1.32.2",
     "@percy/core": "1.32.2",
-    "@percy/logger": "1.32.2",
-    "glob-to-regexp": "^0.4.1",
-    "stream-json": "^1.8.0"
-  },
-  "optionalDependencies": {
-    "snyk-nodejs-lockfile-parser": "2.7.1"
+    "@percy/logger": "1.32.2"
   }
 }
diff --git a/packages/cli-command/src/graphTrace.js b/packages/cli-command/src/graphTrace.js
deleted file mode 100644
index f869286c8..000000000
--- a/packages/cli-command/src/graphTrace.js
+++ /dev/null
@@ -1,154 +0,0 @@
-import fs from 'fs';
-import path from 'path';
-import url from 'url';
-
-// Template resolution mirrors core/utils.js's secretPatterns.yml lookup:
-// resolves relative to this file's URL so it works under src/ (dev) and
-// dist/ (installed) without bundler help. The .html file is copied alongside
-// by babel's copyFiles when cli-command is built.
-const TEMPLATE_PATH = path.resolve(url.fileURLToPath(import.meta.url), '../graphTraceTemplate.html');
-
-// Maps a (raw kind, changed) pair to the kind value the template expects:
-// 'package' | 'component' | 'story' | 'is_relevant'. `changed: true` wins
-// over the underlying kind so any node touched in the diff renders purple.
-function templateKindOf(v) {
-  if (v.changed) return 'is_relevant';
-  switch (v.kind) {
-    case 'dependency': return 'package';
-    case 'component': return 'component';
-    case 'story': return 'story';
-    default: return 'component';
-  }
-}
-
-// Sort order within a column: packages left, components middle, stories right.
-// `is_relevant` shares rank with components so a changed node doesn't jump
-// out of its own group — it just recolors.
-const KIND_RANK = { package: 0, component: 1, is_relevant: 1, story: 2 };
-
-// Layout algorithm (ported from the original Ruby renderer):
-//   1. col = longest-path depth reaching the vertex (read from the
-//      transitive-closure triples the API sends), with dependencies pinned
-//      to col 0.
-//   2. Propagate over edges so col[target] > col[source]. Bounded loop
-//      guards against degenerate inputs.
-//   3. Stories pushed past the rightmost non-story column.
-//   4. Within each column, sort by (kind-rank, name) and assign row.
-function computeLayout(rawVertices, edges, transitiveClosure) {
-  const n = rawVertices.length;
-  const vertices = rawVertices.map((v, i) => ({
-    index: i,
-    name: v.file_path,
-    kind: v.kind,
-    changed: !!v.changed,
-    row: 0,
-    col: 0
-  }));
-
-  // 1. Seed col from incoming transitive-closure lengths.
-  const incomingMax = new Array(n).fill(0);
-  for (const triple of transitiveClosure) {
-    const [u, v, val] = triple;
-    if (u === v || val <= 0) continue;
-    if (v < 0 || v >= n) continue;
-    if (val > incomingMax[v]) incomingMax[v] = val;
-  }
-  for (let i = 0; i < n; i++) {
-    vertices[i].col = vertices[i].kind === 'dependency' ? 0 : incomingMax[i] + 1;
-  }
-
-  // 2. Propagate edge constraint. n+2 iterations is enough for any DAG
-  // and bounds the work on accidentally-cyclic input.
-  const iterations = n + 2;
-  for (let iter = 0; iter < iterations; iter++) {
-    let changed = false;
-    for (const [s, t] of edges) {
-      if (s < 0 || s >= n || t < 0 || t >= n) continue;
-      if (vertices[s].col < vertices[t].col) continue;
-      vertices[t].col = vertices[s].col + 1;
-      changed = true;
-    }
-    if (!changed) break;
-  }
-
-  // 3. Stories rightmost. Two passes: max across non-stories first, then
-  // push every story past that boundary. Folding into one loop would let
-  // stories visited before the last non-story keep a stale max.
-  let furthestNonStory = 0;
-  for (const v of vertices) {
-    if (v.kind === 'story') continue;
-    if (v.col > furthestNonStory) furthestNonStory = v.col;
-  }
-  for (const v of vertices) {
-    if (v.kind !== 'story') continue;
-    if (v.col < furthestNonStory + 1) v.col = furthestNonStory + 1;
-  }
-
-  // 4. Group by column, sort by (kind-rank, name), assign row.
-  const groups = new Map();
-  for (const v of vertices) {
-    let list = groups.get(v.col);
-    if (!list) groups.set(v.col, list = []);
-    list.push(v);
-  }
-  const rankOf = v => {
-    const r = KIND_RANK[templateKindOf(v)];
-    /* istanbul ignore next: templateKindOf always returns a kind present in
-       KIND_RANK, so the `=== undefined` fallback is defensive */
-    return r === undefined ? 99 : r;
-  };
-  for (const list of groups.values()) {
-    list.sort((a, b) => {
-      const ra = rankOf(a);
-      const rb = rankOf(b);
-      if (ra !== rb) return ra - rb;
-      // Byte-wise compare on name to match Ruby's String#<=> behaviour.
-      if (a.name < b.name) return -1;
-      if (a.name > b.name) return 1;
-      return 0;
-    });
-    list.forEach((v, row) => { v.row = row; });
-  }
-
-  // 5. Final shape the template consumes: drop `changed`, fold it into kind.
-  return vertices.map(v => ({
-    index: v.index,
-    name: v.name,
-    row: v.row,
-    col: v.col,
-    kind: templateKindOf(v)
-  }));
-}
-
-// Escapes characters that have meaning inside a <script> block so user-derived
-// strings (e.g. a vertex file_path) can't break out of the surrounding tag.
-// `</` covers `</script>`; `<!--`/`-->` cover HTML comment confusion; U+2028
-// and U+2029 are valid JSON but illegal in JS string literals pre-ES2019 and
-// have historically been XSS sinks.
-const LS = String.fromCharCode(0x2028);
-const PS = String.fromCharCode(0x2029);
-function safeJson(obj) {
-  return JSON.stringify(obj)
-    .replace(/<\//g, '<\\/')
-    .replace(/<!--/g, '<\\!--')
-    .replace(/--(!?)>/g, '--$1\\>')
-    .split(LS).join('\\u2028')
-    .split(PS).join('\\u2029');
-}
-
-// Populates the trace template with the three JSON payloads the page needs.
-// Input shape matches the API's graph data: `vertices` carries `kind`,
-// `file_path`, `changed`; `edges` and `transitive_closure_matrix_sparse`
-// are arrays of integer tuples.
-export function renderGraphTraceHtml({ vertices, edges, transitiveClosureMatrixSparse }) {
-  const laidOutVertices = computeLayout(
-    vertices || [],
-    edges || [],
-    transitiveClosureMatrixSparse || []
-  );
-  const template = fs.readFileSync(TEMPLATE_PATH, 'utf8');
-  return template
-    .replace('__VERTICES_JSON__', safeJson(laidOutVertices))
-    .replace('__EDGES_JSON__', safeJson(edges || []))
-    .replace('__TRANSITIVE_CLOSURE_JSON__', safeJson(transitiveClosureMatrixSparse || []));
-}
diff --git a/packages/cli-command/src/graphTraceTemplate.html b/packages/cli-command/src/graphTraceTemplate.html
deleted file mode 100644
index d7714ec2c..000000000
--- a/packages/cli-command/src/graphTraceTemplate.html
+++ /dev/null
@@ -1,349 +0,0 @@
-<!DOCTYPE html>
-<html>
-<head>
-    <meta charset="utf-8">
-    <title>Smartsnap Graph</title>
-    <link
-        rel="stylesheet"
-        href="https://cdn.jsdelivr.net/npm/drawflow@0.0.60/dist/drawflow.min.css"
-        integrity="sha384-IFh+Q6zh+LRcTjqVmAKetdGY59dT485vtvWT5DAKQy8iv5+fYWHXisHP7mFKcFqV"
-        crossorigin="anonymous">
-    <script
-        src="https://cdn.jsdelivr.net/npm/drawflow@0.0.60/dist/drawflow.min.js"
-        integrity="sha384-JsnM4f1X8b5e9VbQCj6Bt6840HQNDYVKohzbXJnqOetMno8i6cmKNLVkyK3snqSw"
-        crossorigin="anonymous"></script>
-    <style>
-        html, body {
-            margin: 0; padding: 0;
-            font-family: sans-serif; background: #fafafa;
-            width: 100%; height: 100%; overflow: hidden;
-        }
-        #drawflow {
-            position: fixed;
-            top: 0; left: 0; right: 0; bottom: 0;
-            background: #fafafa;
-        }
-        #legend {
-            position: fixed; top: 8px; right: 8px;
-            background: rgba(255,255,255,0.95);
-            padding: 8px 12px; border: 1px solid #999;
-            font-size: 12px; z-index: 100;
-        }
-        #legend span {
-            display: inline-block; width: 12px; height: 12px;
-            vertical-align: middle; margin-right: 4px; border: 1px solid #333;
-        }
-        #controls {
-            position: fixed; top: 8px; left: 8px;
-            background: rgba(255,255,255,0.95);
-            border: 1px solid #999; z-index: 100;
-            display: flex; gap: 2px;
-        }
-        #controls button {
-            border: 0; background: transparent;
-            padding: 6px 10px; cursor: pointer;
-            font-size: 14px; font-family: inherit;
-        }
-        #controls button:hover { background: #eee; }
-
-        .drawflow .drawflow-node {
-            width: max-content;
-            min-width: 0; max-width: none;
-            height: auto; min-height: 0;
-            padding: 8px 14px;
-            white-space: nowrap;
-            font-size: 12px;
-            font-family: ui-monospace, SFMono-Regular, Menlo, monospace;
-            background: #fff;
-            border: 2px solid #333;
-            border-radius: 4px;
-            cursor: pointer;
-            transition: opacity 150ms;
-        }
-        .drawflow .drawflow-node .drawflow_content_node {
-            width: max-content;
-            white-space: nowrap;
-        }
-        .drawflow .drawflow-node.package    { background: #d4e5f7; border-color: #2a6db5; }
-        .drawflow .drawflow-node.component  { background: #daf0c1; border-color: #4a8e1f; }
-        .drawflow .drawflow-node.story      { background: #fce4b6; border-color: #b07310; }
-        .drawflow .drawflow-node.is-relevant { background: #d9b3ff; border-color: #6f30b0; }
-
-        .drawflow .drawflow-node .input,
-        .drawflow .drawflow-node .output {
-            width: 10px !important;
-            height: 10px !important;
-            border-width: 1px !important;
-        }
-
-        .drawflow .connection,
-        .drawflow .connection *,
-        .drawflow svg.connection,
-        .drawflow svg.connection * { pointer-events: none !important; }
-
-        .drawflow .drawflow-node.is-dim { opacity: 0.25; }
-        .drawflow .connection.is-dim { visibility: hidden; }
-
-        .drawflow .drawflow-node.is-selected {
-            box-shadow: 0 0 0 3px #2a6db5, 0 2px 8px rgba(0,0,0,0.2);
-        }
-
-        .measure-node {
-            position: absolute;
-            top: -9999px; left: -9999px;
-            opacity: 0;
-            pointer-events: none;
-            white-space: nowrap;
-            padding: 8px 14px;
-            font-size: 12px;
-            font-family: ui-monospace, SFMono-Regular, Menlo, monospace;
-            border: 2px solid transparent;
-        }
-    </style>
-</head>
-<body>
-<div id="controls">
-    <button id="zoom-in" title="Zoom in">+</button>
-    <button id="zoom-out" title="Zoom out">-</button>
-    <button id="zoom-reset" title="Reset">reset</button>
-</div>
-<div id="legend">
-    <div><span style="background:#d4e5f7"></span>Package Dependency</div>
-    <div><span style="background:#daf0c1"></span>Component</div>
-    <div><span style="background:#fce4b6"></span>Story</div>
-    <div><span style="background:#d9b3ff"></span>Changed file</div>
-</div>
-<div id="drawflow"></div>
-<script type="module">
-// ---------------------------------------------------------------------------
-// Payload populated by the CLI before this template is written to disk.
-// Tokens are replaced by graphTrace.js via plain string substitution.
-//   vertices:                         [{ index, name, row, col, kind }, ...]
-//   edges:                            [[srcIndex, tgtIndex], ...]
-//   transitive_closure_matrix_sparse: [[srcIndex, tgtIndex, length], ...]
-// `kind` is one of: 'package' | 'component' | 'story' | 'is_relevant'.
-// ---------------------------------------------------------------------------
-const vertices = __VERTICES_JSON__;
-const edges = __EDGES_JSON__;
-const transitive_closure_matrix_sparse = __TRANSITIVE_CLOSURE_JSON__;
-const n = vertices.length;
-
-// ---------------------------------------------------------------------------
-// Width measurement: each node grows to fit its file path. We need the
-// rendered width (DOM-dependent) to lay out columns without overlap.
-// ---------------------------------------------------------------------------
-function measureWidth(text) {
-    const el = document.createElement('div');
-    el.className = 'measure-node';
-    el.textContent = text;
-    document.body.appendChild(el);
-    const w = el.offsetWidth;
-    el.remove();
-    return w;
-}
-
-// Drawflow adds port circles on each side (~25px) + border; pad generously.
-const PORT_PAD = 60;
-const nodeWidth = vertices.map(v => measureWidth(v.name) + PORT_PAD);
-
-// ---------------------------------------------------------------------------
-// Column X positions (cumulative by max width per column).
-// ---------------------------------------------------------------------------
-const PAD_X = 60, PAD_Y = 60, COL_GAP = 140, ROW_HEIGHT = 70;
-
-const colMaxWidth = {};
-for (let i = 0; i < n; i++) {
-    const c = vertices[i].col;
-    if (!colMaxWidth[c] || nodeWidth[i] > colMaxWidth[c]) colMaxWidth[c] = nodeWidth[i];
-}
-const sortedCols = Object.keys(colMaxWidth).map(Number).sort((a, b) => a - b);
-const colX = {};
-let cursor = PAD_X;
-for (const c of sortedCols) {
-    colX[c] = cursor;
-    cursor += colMaxWidth[c] + COL_GAP;
-}
-
-// ---------------------------------------------------------------------------
-// Boot Drawflow.
-// ---------------------------------------------------------------------------
-const container = document.getElementById('drawflow');
-const editor = new Drawflow(container);
-editor.reroute = false;
-editor.start();
-
-function escapeHtml(s) {
-    return String(s)
-        .replace(/&/g, '&amp;')
-        .replace(/</g, '&lt;')
-        .replace(/>/g, '&gt;')
-        .replace(/"/g, '&quot;')
-        .replace(/'/g, '&#39;');
-}
-
-// CSS classes per kind. `is_relevant` becomes `is-relevant` so it matches
-// the stylesheet rule.
-function cssClassFor(kind) {
-    if (kind === 'is_relevant') return 'is-relevant';
-    return kind;
-}
-
-// ---------------------------------------------------------------------------
-// Add nodes. row/col come from the server; pixel positions are computed
-// here using the measured widths so columns never overlap.
-// ---------------------------------------------------------------------------
-const nodeIds = new Array(n);
-for (let i = 0; i < n; i++) {
-    const v = vertices[i];
-    const id = editor.addNode(
-        'node',
-        1, 1,
-        colX[v.col],
-        PAD_Y + v.row * ROW_HEIGHT,
-        cssClassFor(v.kind),
-        { index: v.index, kind: v.kind, name: v.name },
-        escapeHtml(v.name),
-    );
-    nodeIds[i] = id;
-}
-
-// ---------------------------------------------------------------------------
-// Connections.
-// ---------------------------------------------------------------------------
-for (const e of edges) {
-    editor.addConnection(nodeIds[e[0]], nodeIds[e[1]], 'output_1', 'input_1');
-}
-
-editor.editor_mode = 'fixed';
-
-// ---------------------------------------------------------------------------
-// Arrowheads on connection paths.
-// ---------------------------------------------------------------------------
-const SVG_NS = 'http://www.w3.org/2000/svg';
-function addArrowhead(svg) {
-    if (svg.querySelector('marker')) return;
-    let defs = svg.querySelector('defs');
-    if (!defs) {
-        defs = document.createElementNS(SVG_NS, 'defs');
-        svg.insertBefore(defs, svg.firstChild);
-    }
-    const marker = document.createElementNS(SVG_NS, 'marker');
-    marker.setAttribute('id', 'arrowhead');
-    marker.setAttribute('viewBox', '0 0 10 10');
-    marker.setAttribute('refX', '9');
-    marker.setAttribute('refY', '5');
-    marker.setAttribute('markerWidth', '5');
-    marker.setAttribute('markerHeight', '5');
-    marker.setAttribute('orient', 'auto');
-    const tip = document.createElementNS(SVG_NS, 'path');
-    tip.setAttribute('d', 'M 0 0 L 10 5 L 0 10 z');
-    tip.setAttribute('fill', '#4ea9ff');
-    marker.appendChild(tip);
-    defs.appendChild(marker);
-    const path = svg.querySelector('path.main-path') || svg.querySelector('path');
-    if (path) path.setAttribute('marker-end', 'url(#arrowhead)');
-}
-container.querySelectorAll('svg.connection').forEach(addArrowhead);
-
-new MutationObserver((muts) => {
-    for (const m of muts) {
-        for (const node of m.addedNodes) {
-            if (node.nodeType !== 1) continue;
-            if (node.matches && node.matches('svg.connection')) addArrowhead(node);
-            if (node.querySelectorAll) {
-                node.querySelectorAll('svg.connection').forEach(addArrowhead);
-            }
-        }
-    }
-}).observe(container, { subtree: true, childList: true });
-
-// ---------------------------------------------------------------------------
-// Click-to-select with bidirectional reachability highlight.
-//
-// Reachability comes straight from transitive_closure_matrix_sparse: for a click
-// on vertex `start`, anything appearing as the target of a triple
-// (start, j, _) is reachable from `start`, and anything appearing as the
-// source of a triple (i, start, _) can reach `start`. No adjacency list —
-// we just iterate the triples each time. With small click counts and a
-// sparse matrix this is fast enough and avoids carrying redundant graph
-// state in the page.
-// ---------------------------------------------------------------------------
-const idxByDfId = new Map();
-for (let i = 0; i < n; i++) {
-    if (nodeIds[i] !== undefined) idxByDfId.set(nodeIds[i], i);
-}
-
-function connectedTo(start) {
-    const seen = new Set([start]);
-    for (const transitive_edge of transitive_closure_matrix_sparse) {
-        if (transitive_edge[0] === start) seen.add(transitive_edge[1]);
-        else if (transitive_edge[1] === start) seen.add(transitive_edge[0]);
-    }
-    return seen;
-}
-
-function parseEndpointIds(svg) {
-    let outId = null, inId = null;
-    for (const cls of svg.classList) {
-        if (cls.startsWith('node_out_node-')) outId = parseInt(cls.slice('node_out_node-'.length), 10);
-        else if (cls.startsWith('node_in_node-')) inId = parseInt(cls.slice('node_in_node-'.length), 10);
-    }
-    return { outId, inId };
-}
-
-let currentSelected = null;
-
-function clearSelection() {
-    container.querySelectorAll('.drawflow-node.is-dim, .drawflow-node.is-selected')
-        .forEach(el => el.classList.remove('is-dim', 'is-selected'));
-    container.querySelectorAll('svg.connection.is-dim')
-        .forEach(el => el.classList.remove('is-dim'));
-}
-
-function applySelection(startIdx) {
-    const connected = connectedTo(startIdx);
-
-    for (let i = 0; i < n; i++) {
-        const el = document.getElementById('node-' + nodeIds[i]);
-        if (!el) continue;
-        el.classList.toggle('is-dim', !connected.has(i));
-        el.classList.toggle('is-selected', i === startIdx);
-    }
-
-    container.querySelectorAll('svg.connection').forEach((svg) => {
-        const { outId, inId } = parseEndpointIds(svg);
-        const s = idxByDfId.get(outId);
-        const t = idxByDfId.get(inId);
-        const keep = (s !== undefined && t !== undefined
-                      && connected.has(s) && connected.has(t));
-        svg.classList.toggle('is-dim', !keep);
-    });
-}
-
-container.addEventListener('click', (evt) => {
-    const nodeEl = evt.target.closest('.drawflow-node');
-    if (!nodeEl) return;
-    const m = nodeEl.id.match(/^node-(\d+)$/);
-    if (!m) return;
-    const dfId = parseInt(m[1], 10);
-    const idx = idxByDfId.get(dfId);
-    if (idx === undefined) return;
-
-    if (currentSelected === idx) {
-        currentSelected = null;
-        clearSelection();
-    } else {
-        currentSelected = idx;
-        applySelection(idx);
-    }
-});
-
-// ---------------------------------------------------------------------------
-// Toolbar.
-// ---------------------------------------------------------------------------
-document.getElementById('zoom-in').onclick    = () => editor.zoom_in();
-document.getElementById('zoom-out').onclick   = () => editor.zoom_out();
-document.getElementById('zoom-reset').onclick = () => { editor.zoom_reset(); currentSelected = null; clearSelection(); };
-</script>
-</body>
-</html>
diff --git a/packages/cli-command/src/index.js b/packages/cli-command/src/index.js
index 4efd6e002..d84c18762 100644
--- a/packages/cli-command/src/index.js
+++ b/packages/cli-command/src/index.js
@@ -1,6 +1,5 @@
 export { default, command, _resetShutdownForTest } from './command.js';
 export { legacyCommand, legacyFlags as flags } from './legacy.js';
-export { applySmartSnap, SmartSnapBailError } from './smartsnap.js';
 // export common packages to avoid dependency resolution issues
 export { default as PercyConfig } from '@percy/config';
 export { default as logger } from '@percy/logger';
diff --git a/packages/cli-command/src/lockfileDiff.js b/packages/cli-command/src/lockfileDiff.js
deleted file mode 100644
index 6b6e6ea54..000000000
--- a/packages/cli-command/src/lockfileDiff.js
+++ /dev/null
@@ -1,166 +0,0 @@
-import { createRequire } from 'module';
-import logger from '@percy/logger';
-
-// snyk-nodejs-lockfile-parser is a CommonJS optionalDependency. It requires
-// Node >=18 while the CLI supports Node >=14, so we defer the require to call
-// time — that way importing this module never throws on older Node versions
-// (or when the optional install was skipped for any other reason). Cached on
-// first successful load so the require only resolves once per process.
-const require = createRequire(import.meta.url);
-let _snykModule;
-/* istanbul ignore next: snyk-backed path — the parser requires Node >=18 while
-   CI runs the suite on Node 14, so these lines can't execute there; they're
-   exercised by the describeSnyk tests on Node >=18 */
-function loadSnyk() {
-  if (_snykModule) return _snykModule;
-  try {
-    _snykModule = require('snyk-nodejs-lockfile-parser');
-    return _snykModule;
-  } catch (e) {
-    // Surface the underlying require failure so callers can distinguish
-    // "not installed" (engine mismatch / optional skip) from genuine parse
-    // failures that happen later inside buildDepTree.
-    const err = new Error(`snyk-nodejs-lockfile-parser is not available (requires Node >=18, or the optional install was skipped): ${e.message}`);
-    err.code = 'SNYK_LOCKFILE_PARSER_UNAVAILABLE';
-    throw err;
-  }
-}
-
-// Map the on-disk filename to snyk's LockfileType enum key. We can't resolve
-// the enum value at module-eval time because the snyk import is deferred, so
-// we look up the value inside diffLockfileDeps after loadSnyk() runs.
-const TYPE_KEY_BY_FILENAME = {
-  'package-lock.json': 'npm',
-  'yarn.lock': 'yarn',
-  'pnpm-lock.yaml': 'pnpm'
-};
-
-// Walk snyk's PkgTree (a recursive `{ name, version, dependencies: { ... } }`
-// structure) into a flat `Map<name, version>` of every resolved package.
-// We dedupe by name on first sight — multiple versions of the same package
-// in the tree get collapsed to the first one encountered, which is fine for
-// the diff because we only care about whether *something* about the package
-// changed between old and new.
-/* istanbul ignore next: snyk-backed path — only reachable on Node >=18 (see loadSnyk) */
-function flattenPkgTree(tree) {
-  const out = new Map();
-  const walk = node => {
-    if (!node?.dependencies) return;
-    for (const [name, child] of Object.entries(node.dependencies)) {
-      if (!out.has(name)) out.set(name, child.version);
-      walk(child);
-    }
-  };
-  walk(tree);
-  return out;
-}
-
-// Pull `{ name -> rangeString }` from a raw package.json's `dependencies`
-// and `peerDependencies` blocks. devDeps and optionalDeps are intentionally
-// excluded — only runtime-relevant top-level packages count. Returns {} on
-// parse failure so the diff falls through to lockfile-only signal.
-/* istanbul ignore next: snyk-backed path — only reachable on Node >=18 (see loadSnyk) */
-function topLevelDeps(packageJsonContents) {
-  try {
-    const pkg = JSON.parse(packageJsonContents);
-    return {
-      ...(pkg.dependencies || {}),
-      ...(pkg.peerDependencies || {})
-    };
-  } catch {
-    return {};
-  }
-}
-
-// Given the project's package.json plus the old and new lockfile contents,
-// return the set of package names that were added, removed, or version-bumped.
-// Results are restricted to packages declared at the top level (dependencies
-// or peerDependencies) of either old or new package.json — transitives ride
-// along on direct-dep bumps and the BE module graph already resolves them
-// from stats `imports[]`, so surfacing them here would just be noise.
-//
-// Two complementary diffs run, both gated by top-level names:
-//   1. Resolved-version diff over the snyk PkgTree — catches lockfile entries
-//      whose version actually changed.
-//   2. Range-string diff over package.json — catches the case where a user
-//      bumped `^5.8.3` to `^5.18.0` but the lockfile already resolved to
-//      5.18.0 under the old range, so the resolved tree looks identical.
-export async function diffLockfileDeps({ packageJson, oldPackageJson, oldLockfile, newLockfile, lockfileType }) {
-  const log = logger('storybook:smartsnap:lockfile');
-
-  // Validate the filename maps to a supported lockfile type BEFORE loading the
-  // optional snyk parser. The parser requires Node >=18, so on older runtimes
-  // (or when the optional install was skipped) an unsupported type must still
-  // fail with this clear error rather than the parser-unavailable error from
-  // loadSnyk(). This filename check needs no parser to run.
-  const typeKey = TYPE_KEY_BY_FILENAME[lockfileType];
-  /* istanbul ignore else: on the Node-14 CI only the unsupported-type path is
-     exercised; the supported-type branch runs in describeSnyk on Node >=18 */
-  if (!typeKey) {
-    throw new Error(`Unsupported lockfile type: ${lockfileType}`);
-  }
-
-  /* istanbul ignore next: supported-type path — only reachable on Node >=18 (see loadSnyk) */
-  return resolveAffectedDeps({ packageJson, oldPackageJson, oldLockfile, newLockfile, typeKey, log });
-}
-
-// The snyk-backed resolution, split into its own function so a single
-// coverage-ignore covers the whole path: the parser requires Node >=18 while CI
-// runs the suite on Node 14, so none of this executes there. The describeSnyk
-// tests exercise it on Node >=18. `typeKey` is already validated against
-// TYPE_KEY_BY_FILENAME by the caller, so it always resolves to a LockfileType.
-/* istanbul ignore next: snyk-backed path — only reachable on Node >=18 (see loadSnyk) */
-async function resolveAffectedDeps({ packageJson, oldPackageJson, oldLockfile, newLockfile, typeKey, log }) {
-  const { buildDepTree, LockfileType } = loadSnyk();
-  const type = LockfileType[typeKey];
-
-  // The two buildDepTree calls are kept sequential (not Promise.all'd) so that
-  // when one of them throws the log message identifies *which* side failed —
-  // old vs. new lockfile parsing behave differently when the user's lockfile
-  // is in an unexpected state.
-  let oldTree;
-  try {
-    log.debug('buildDepTree: parsing OLD lockfile...');
-    oldTree = await buildDepTree(oldPackageJson, oldLockfile, true, type);
-    log.debug('buildDepTree: OLD lockfile parsed successfully');
-  } catch (e) {
-    log.warn(`buildDepTree: OLD lockfile failed to parse: ${e.message}`);
-    throw e;
-  }
-
-  let newTree;
-  try {
-    log.debug('buildDepTree: parsing NEW lockfile...');
-    newTree = await buildDepTree(packageJson, newLockfile, true, type);
-    log.debug('buildDepTree: NEW lockfile parsed successfully');
-  } catch (e) {
-    log.warn(`buildDepTree: NEW lockfile failed to parse: ${e.message}`);
-    throw e;
-  }
-
-  const oldPkgs = flattenPkgTree(oldTree);
-  const newPkgs = flattenPkgTree(newTree);
-
-  const oldTopLevel = topLevelDeps(oldPackageJson);
-  const newTopLevel = topLevelDeps(packageJson);
-  const topLevelNames = new Set([...Object.keys(oldTopLevel), ...Object.keys(newTopLevel)]);
-
-  const affected = new Set();
-  for (const [name, version] of newPkgs) {
-    if (!topLevelNames.has(name)) continue;
-    if (!oldPkgs.has(name) || oldPkgs.get(name) !== version) affected.add(name);
-  }
-  for (const [name] of oldPkgs) {
-    if (!topLevelNames.has(name)) continue;
-    if (!newPkgs.has(name)) affected.add(name);
-  }
-
-  // Range-string diff is inherently top-level since it iterates package.json
-  // directly. `!==` between the strings (or undefined) covers added, removed,
-  // and changed in a single comparison.
-  for (const name of topLevelNames) {
-    if (oldTopLevel[name] !== newTopLevel[name]) affected.add(name);
-  }
-
-  return [...affected];
-}
diff --git a/packages/cli-command/src/smartsnap.js b/packages/cli-command/src/smartsnap.js
deleted file mode 100644
index a3567106d..000000000
--- a/packages/cli-command/src/smartsnap.js
+++ /dev/null
@@ -1,653 +0,0 @@
-import fs from 'fs';
-import path from 'path';
-import { spawnSync } from 'child_process';
-import { createRequire } from 'module';
-import globToRegExp from 'glob-to-regexp';
-import logger from '@percy/logger';
-import { diffLockfileDeps } from './lockfileDiff.js';
-import { renderGraphTraceHtml } from './graphTrace.js';
-
-// stream-json is CommonJS — load via createRequire to avoid named-import interop issues.
-const require = createRequire(import.meta.url);
-const { parser } = require('stream-json');
-const { pick } = require('stream-json/filters/Pick');
-const { streamArray } = require('stream-json/streamers/StreamArray');
-const { streamValues } = require('stream-json/streamers/StreamValues');
-
-// Webpack/Vite stats prefix loader-resolved virtual modules with a NUL byte
-// (e.g. "\u0000/path/to/file?commonjs-es-import"). Strip it so the path lines
-// up with the absolute paths in our file index. Built via String.fromCharCode
-// to avoid embedding a control char in source / tripping no-control-regex.
-const NULL_CHAR = String.fromCharCode(0);
-// split/join instead of String.prototype.replaceAll: replaceAll is Node 15+
-// and cli-command supports Node >=14.
-/* istanbul ignore next: the non-string branch is defensive — resolveAndIndex
-   only ever passes stats string values, and a non-string would throw at the
-   path.isAbsolute call below anyway */
-const stripNull = s => (typeof s === 'string' ? s.split(NULL_CHAR).join('') : s);
-
-// Status poll cadence: 12 attempts × 5s = 1 minute total.
-const POLL_INTERVAL_MS = 5000;
-const POLL_ATTEMPTS = 12;
-
-const GLOB_CHARS = /[*?]/;
-const MAX_PATTERN_LENGTH = 500;
-
-function patternToRegex(pattern) {
-  /* istanbul ignore next: callers (matchesPattern) only ever pass a string, so
-     the typeof guard is defensive; the length guard is exercised at runtime by
-     the over-long-glob test via the matchesPattern catch below */
-  if (typeof pattern !== 'string' || pattern.length > MAX_PATTERN_LENGTH) {
-    throw new Error('Invalid pattern: must be a string with max length of 500 characters');
-  }
-  return globToRegExp(pattern, { extended: true, globstar: true });
-}
-
-function matchesPattern(str, pattern) {
-  if (GLOB_CHARS.test(pattern)) {
-    try {
-      return patternToRegex(pattern).test(str);
-    } catch {
-      return false;
-    }
-  }
-  return str === pattern;
-}
-
-// Thrown from any pipeline step that wants to fall back to the full snapshot
-// set. The caller in snapshots.js downgrades these to log.info — they're
-// expected, user-visible bail conditions, not crashes.
-export class SmartSnapBailError extends Error {
-  constructor(message) {
-    super(message);
-    this.name = 'SmartSnapBailError';
-  }
-}
-
-// Any git failure is treated as a recoverable bail (full snapshot fallback),
-// per this module's contract. A common trigger is CI shallow clones where the
-// predicted base commit isn't fetched locally, so `git diff <sha> HEAD` fails —
-// we must downgrade that to a full snapshot, not crash the build. Callers that
-// want a more specific bail message (e.g. lockfile lookup) catch and re-throw.
-function git(args) {
-  let res;
-  try {
-    res = spawnSync('git', args, { encoding: 'utf8' });
-  } catch (e) {
-    /* istanbul ignore next: spawnSync only throws on an exec-level failure (e.g.
-       git binary missing / ENOMEM), which the test environment can't induce —
-       the non-zero-exit bail below is the path real git failures take */
-    throw new SmartSnapBailError(`SmartSnap: git ${args.join(' ')} failed to spawn: ${e.message}; running full snapshot set`);
-  }
-  if (res.status !== 0) {
-    /* istanbul ignore next: the stderr||stdout||exit-code fallbacks in the
-       message are defensive — git failures in tests always carry stderr */
-    throw new SmartSnapBailError(`SmartSnap: git ${args.join(' ')} failed: ${res.stderr || res.stdout || `exit ${res.status}`}; running full snapshot set`);
-  }
-  return res.stdout;
-}
-
-// baseRef flows into `git` argv from either user config (`baseline`) or the
-// API. Reject anything that could be parsed as an option (leading `-`) or
-// contains chars outside the safe ref alphabet — git also accepts `--` as an
-// end-of-options separator in `git diff`, but not before the rev in
-// `git show <rev>:<path>`, so validation is the only universal guard.
-function assertSafeRef(ref) {
-  if (typeof ref !== 'string' || !/^[A-Za-z0-9_./][A-Za-z0-9_./-]*$/.test(ref)) {
-    throw new SmartSnapBailError(`SmartSnap: unsafe baseline ref "${ref}"; running full snapshot set`);
-  }
-}
-
-function gitDiffNames(ref) {
-  assertSafeRef(ref);
-  return git(['diff', '--name-only', ref, 'HEAD', '--']).split('\n').filter(Boolean);
-}
-
-function gitProjectRoot() {
-  return git(['rev-parse', '--show-toplevel']).trim();
-}
-
-// Parse `git diff --unified=0` hunk headers to find which line ranges are new
-// or changed (on the HEAD side) for each file, then key them by the file's
-// index in the stats `files` array — the same index module/source refs use, so
-// the graph can join them without a path lookup. `--unified=0` drops context
-// lines so every hunk header bounds an actual change; `--no-renames` makes a
-// rename surface as add+delete so the new path is always concrete.
-//
-// Files in the diff that aren't tracked in `files` (e.g. node_modules,
-// .storybook, or anything the stats compactor didn't index) are skipped — the
-// graph can only reason about indexed files. Returns { <fileIndex>: [[start, end], ...] }.
-export function getAffectedFileLocations(baseRef, files) {
-  assertSafeRef(baseRef);
-  const diff = git(['diff', '--unified=0', '--no-color', '--no-renames', baseRef, 'HEAD', '--']);
-
-  // The `files` array uses the platform separator (path.relative → back-slash
-  // on Windows); git diff always emits forward slashes. Normalize both to
-  // forward-slash for the path→index lookup.
-  const toPosix = p => p.split(path.sep).join('/');
-  const indexByPath = new Map(files.map((f, i) => [toPosix(f), i]));
-
-  // @@ -a,b +c,d @@ — the new-side `+c,d` is what we want. `d` defaults to 1
-  // when omitted; `d === 0` is a pure deletion anchored at line c (no added
-  // lines), so it contributes no range.
-  const HUNK = /^@@ -\d+(?:,\d+)? \+(\d+)(?:,(\d+))? @@/;
-
-  const locations = {};
-  let currentIdx;
-  for (const line of diff.split('\n')) {
-    // `+++ b/<path>` opens a file's hunks with its new-side path; a pure
-    // deletion shows `+++ /dev/null`, so leave currentIdx unset and skip it.
-    if (line.startsWith('+++ ')) {
-      const p = line.slice(4);
-      if (p === '/dev/null') { currentIdx = undefined; continue; }
-      /* istanbul ignore next: git always prefixes the new-side path with `b/`
-         (anything else is `/dev/null`, handled above), so the bare `: p`
-         fallback is defensive and unreachable in real diff output */
-      const rel = p.startsWith('b/') ? p.slice(2) : p;
-      currentIdx = indexByPath.get(rel);
-      continue;
-    }
-    if (currentIdx === undefined) continue;
-    const m = HUNK.exec(line);
-    if (!m) continue;
-    const start = parseInt(m[1], 10);
-    const count = m[2] === undefined ? 1 : parseInt(m[2], 10);
-    if (count === 0) continue;
-    if (!locations[currentIdx]) locations[currentIdx] = [];
-    locations[currentIdx].push([start, start + count - 1]);
-  }
-  return locations;
-}
-
-// Paths under these directories are dependencies / framework wiring rather
-// than first-party source, so we don't track them in the file index.
-const EXCLUDED_DIRS = new Set(['node_modules', '.storybook']);
-const isExcluded = relPath => relPath.split(/[/\\]/).some(seg => EXCLUDED_DIRS.has(seg));
-
-// Resolve+index used for `id` and `resolvedFrom` only. Converts absolute paths
-// to projectRoot-relative form, then either returns the existing index for that
-// path or assigns the next one (= current map size). Paths inside node_modules
-// or .storybook are returned as the relative string and *not* indexed; modules
-// whose id falls into that bucket are dropped downstream by the
-// "id is string → drop" contract in transformModule.
-function resolveAndIndex(value, fileIndex, projectRoot) {
-  const clean = stripNull(value);
-  if (!path.isAbsolute(clean)) return clean;
-  const rel = path.relative(projectRoot, clean);
-  if (isExcluded(rel)) return rel;
-  let idx = fileIndex.get(rel);
-  if (idx === undefined) {
-    idx = fileIndex.size;
-    fileIndex.set(rel, idx);
-  }
-  return idx;
-}
-
-// Transform a stats `modules[]` entry into the indexed shape the SmartSnap graph expects.
-// Returns null when the module's id is a string — those entries are dropped (per BE contract).
-// Each `imports[i]` / `passThroughExports[i]` carries `{ type, source }` from the
-// bundler-plugin: for `type === 'src'` we translate the absolute file path to its
-// project-file index when possible; for `type === 'module'` the source is already
-// the bare package name, so we leave it alone.
-function transformModule(m, fileIndex, projectRoot) {
-  const out = {};
-  if (m.id != null) out.id = resolveAndIndex(m.id, fileIndex, projectRoot);
-  if (typeof out.id === 'string') return null;
-
-  const mapEntry = (e) => {
-    const copy = { ...e };
-    if (copy.type === 'src' && typeof copy.source === 'string') {
-      copy.source = resolveAndIndex(copy.source, fileIndex, projectRoot);
-    }
-    // `loc` (when present) is an array of `{ start, end }` source spans; the
-    // graph expects each span as a `[start, end]` tuple instead.
-    if (Array.isArray(copy.loc)) {
-      copy.loc = copy.loc.map(l => [l.start, l.end]);
-    }
-    return copy;
-  };
-
-  if (Array.isArray(m.imports)) out.imports = m.imports.map(mapEntry);
-  if (Array.isArray(m.passThroughExports)) out.passThroughExports = m.passThroughExports.map(mapEntry);
-  if (Array.isArray(m.nonPassThroughExports)) out.nonPassThroughExports = m.nonPassThroughExports;
-
-  return out;
-}
-
-function streamModules(filePath, onModule) {
-  return new Promise((resolve, reject) => {
-    fs.createReadStream(filePath)
-      .pipe(parser())
-      .pipe(pick({ filter: 'modules' }))
-      .pipe(streamArray())
-      .on('data', ({ value }) => onModule(value))
-      .on('end', resolve)
-      .on('error', reject);
-  });
-}
-
-function readTopLevelKey(filePath, key) {
-  return new Promise((resolve, reject) => {
-    let value;
-    fs.createReadStream(filePath)
-      .pipe(parser())
-      .pipe(pick({ filter: key }))
-      .pipe(streamValues())
-      .on('data', ({ value: v }) => { value = v; })
-      .on('end', () => resolve(value))
-      .on('error', reject);
-  });
-}
-
-async function readStats(statsFile, projectRoot) {
-  const fileIndex = new Map();
-  const modules = [];
-  await streamModules(statsFile, (m) => {
-    const t = transformModule(m, fileIndex, projectRoot);
-    if (t) modules.push(t);
-  });
-
-  // Emit `files` ordered by encounter-time index so files[N] corresponds to
-  // every module/source ref that was assigned index N during streaming.
-  const files = [...fileIndex.entries()]
-    .sort((a, b) => a[1] - b[1])
-    .map(([p]) => p);
-
-  // The bundler-plugin-smartsnap emits a unique buildId per storybook build
-  // so concurrent runs against the same project don't share Redis state.
-  const buildId = await readTopLevelKey(statsFile, 'buildId');
-  return { files, modules, buildId };
-}
-
-// Polls `job_status?sync=true&type=smartsnap_graph&id=<buildId>` — the sync
-// response blocks server-side until the job moves off `in_progress`, but the
-// API enforces a shorter timeout than the job can take, so we retry up to
-// POLL_ATTEMPTS times. On `done` the response also carries the graph payload
-// (affected stories + vertices/edges/transitive closure for trace
-// rendering), so the caller reads it directly without a second fetch.
-//
-// Response shape is the unwrapped `{ status, data }` — the smartsnap_graph
-// status response no longer keys the result by buildId.
-async function pollGraphStatus(percy, buildId, log) {
-  for (let i = 0; i < POLL_ATTEMPTS; i++) {
-    const res = await percy.client.getStatus('smartsnap_graph', [buildId]);
-    const status = res?.status;
-    log.debug(`SmartSnap: graph status (attempt ${i + 1}) = ${status}`);
-    if (status === 'done' || status === 'failed') return { status, data: res?.data };
-    if (i < POLL_ATTEMPTS - 1) await new Promise(r => setTimeout(r, POLL_INTERVAL_MS));
-  }
-  return { status: null };
-}
-
-// First component: resolve + validate the statsFile path, stream-read it, and
-// assert it carries a usable buildId. Returns { files, modules, buildId }; any
-// problem throws a SmartSnapBailError so the caller falls back to a full set.
-export async function validateAndReadStats(buildDir, statsFile, projectRoot, log) {
-  // Treat statsFile as a flat filename anchored inside the build directory.
-  // path.basename() strips any traversal segments so the resolved path can't
-  // escape buildDir even if the config is hostile.
-  const statsName = path.basename(statsFile || 'enriched-stats.json');
-  if (!/^[\w.-]+\.json$/i.test(statsName)) {
-    throw new SmartSnapBailError(`SmartSnap: invalid statsFile "${statsName}" — must be a .json filename; running full snapshot set`);
-  }
-  // statsName is path.basename'd and regex-validated above; buildDir is operator-supplied config (reviewed, approved by security)
-  const resolvedStatsPath = path.join(path.resolve(buildDir), statsName); // nosemgrep
-  let statsStat;
-  try {
-    statsStat = fs.statSync(resolvedStatsPath);
-  } catch {
-    throw new SmartSnapBailError(`SmartSnap: stats file "${statsName}" not found in build directory ${buildDir}; running full snapshot set`);
-  }
-  if (!statsStat.isFile()) {
-    throw new SmartSnapBailError(`SmartSnap: stats file "${statsName}" in ${buildDir} is not a regular file; running full snapshot set`);
-  }
-
-  log.debug(`SmartSnap: parsing stats file ${resolvedStatsPath}`);
-  const { files, modules, buildId } = await readStats(resolvedStatsPath, projectRoot);
-
-  if (typeof buildId !== 'string' || !buildId) {
-    throw new SmartSnapBailError(`SmartSnap: stats file at ${resolvedStatsPath} is missing a top-level "buildId" — running full snapshot set`);
-  }
-
-  return { files, modules, buildId };
-}
-
-// Resolve the diff base ref + the list of changed files. With an explicit
-// `baseline` we diff against it directly and skip the API base-build lookup
-// entirely (its snapshot map is only consulted on the no-baseline path), so
-// `baselineSnapshots` comes back null in that case.
-export async function getBaselineAndAffectedNodes(percy, baseline, log) {
-  let baseRef;
-  let baselineSnapshots;
-
-  if (baseline) {
-    log.debug(`SmartSnap: diffing against explicit baseline "${baseline}"`);
-    baseRef = baseline;
-    baselineSnapshots = null;
-  } else {
-    // New API shape: `{ base_build_commit_sha, snapshots: { <name>: <review_state> } }`.
-    // The single base-build commit replaces the previous per-snapshot commit map —
-    // baseline prediction now happens server-side via `Percy::BaseBuildService`,
-    // so we just diff against whatever commit it picked. The set of snapshot
-    // names is no longer sent; the API resolves baselines from the project +
-    // git/PR context alone.
-    const baseLookup = await percy.client.getSmartsnapSnapshotNameToCommit();
-    log.debug(`SmartSnap: base lookup ${JSON.stringify(baseLookup)}`);
-    if (!baseLookup?.base_build_commit_sha) {
-      throw new SmartSnapBailError('SmartSnap: API could not predict a base build commit and no explicit baseline was set; running full snapshot set');
-    }
-    log.debug(`SmartSnap: diffing against predicted base build commit "${baseLookup.base_build_commit_sha}"`);
-    baseRef = baseLookup.base_build_commit_sha;
-    baselineSnapshots = baseLookup.snapshots || {};
-  }
-
-  assertSafeRef(baseRef);
-  const affectedNodes = gitDiffNames(baseRef);
-  return { baseRef, affectedNodes, baselineSnapshots };
-}
-
-// A change to anything under `.storybook/` (preview config, addons, manager
-// wiring) can affect every story's render, so the dep graph isn't enough.
-export function assertNoDotStorybookChange(affectedNodes) {
-  const dotStorybookHit = affectedNodes.find(p => p.split(/[/\\]/).includes('.storybook'));
-  if (dotStorybookHit) {
-    throw new SmartSnapBailError(`SmartSnap: change to "${dotStorybookHit}" inside .storybook affects all stories; running full snapshot set`);
-  }
-}
-
-// Bail to a full snapshot set if any changed file matches a user-supplied
-// bailOnChanges glob.
-export function assertNoBailOnChanges(affectedNodes, bailOnChanges) {
-  if (bailOnChanges?.length) {
-    const bailed = affectedNodes.find(p => bailOnChanges.some(g => matchesPattern(p, g)));
-    if (bailed) {
-      throw new SmartSnapBailError(`SmartSnap: change to "${bailed}" matched bailOnChanges; running full snapshot set`);
-    }
-  }
-}
-
-// Drop changed files that match a user-supplied `untraced` glob so they don't
-// drive snapshot selection. Returns the filtered list (unchanged when no
-// untraced patterns are configured).
-export function enforceUntraced(affectedNodes, untraced) {
-  if (untraced?.length) {
-    return affectedNodes.filter(p => !untraced.some(g => matchesPattern(p, g)));
-  }
-  return affectedNodes;
-}
-
-// Manifest/lockfile changes can shift the dependency tree, so resolve the
-// diff at the package level via snyk-nodejs-lockfile-parser and return the
-// changed package names to feed back into the graph. Returns [] when there's
-// nothing to resolve; short-circuits below fall back to a full snapshot
-// (via SmartSnapBailError) whenever we can't reason about the change.
-export async function getAffectedPackages(affectedNodes, baseRef, projectRoot, log) {
-  const MANIFEST_PATHS = new Set(['package.json', 'package-lock.json', 'yarn.lock', 'pnpm-lock.yaml']);
-  const manifestHits = affectedNodes.filter(p => MANIFEST_PATHS.has(path.basename(p)));
-
-  if (manifestHits.length === 0) return [];
-
-  // Locate the changed manifest's directory from affectedNodes (NOT the git
-  // root) — monorepos keep package.json + lockfile inside a workspace dir.
-  // If two changes land in different dirs, we'd need per-workspace resolution
-  // we don't try to do yet, so bail.
-  const uniqueDirs = [...new Set(manifestHits.map(p => path.dirname(p)))];
-  if (uniqueDirs.length > 1) {
-    throw new SmartSnapBailError(`SmartSnap: manifest changes span multiple directories (${uniqueDirs.join(', ')}); running full snapshot set`);
-  }
-  const manifestDir = uniqueDirs[0]; // repo-relative; '.' for root
-  // manifestDir is derived from git-tracked paths under projectRoot (reviewed, approved by security)
-  const absManifestDir = path.resolve(projectRoot, manifestDir); // nosemgrep
-
-  // Pick the lockfile that lives next to the changed manifest. If two
-  // coexist (e.g. a stray package-lock.json next to yarn.lock) we can't
-  // pick a canonical source, so bail.
-  const LOCKFILE_NAMES = ['package-lock.json', 'yarn.lock', 'pnpm-lock.yaml'];
-  // n is from the hardcoded LOCKFILE_NAMES allowlist (reviewed, approved by security)
-  const presentLockfiles = LOCKFILE_NAMES.filter(n => fs.existsSync(path.join(absManifestDir, n))); // nosemgrep
-  if (presentLockfiles.length === 0) {
-    throw new SmartSnapBailError(`SmartSnap: manifest changed in "${manifestDir}" but no lockfile present there; running full snapshot set`);
-  }
-  if (presentLockfiles.length > 1) {
-    throw new SmartSnapBailError(`SmartSnap: multiple lockfiles in "${manifestDir}" (${presentLockfiles.join(', ')}); cannot pick canonical; running full snapshot set`);
-  }
-  const lockfileName = presentLockfiles[0];
-  // git always uses forward slashes for its <rev>:<path> spec; build it by
-  // hand instead of path.join (which would use backslashes on Windows).
-  const lockfileRepoPath = manifestDir === '.' ? lockfileName : `${manifestDir}/${lockfileName}`;
-
-  // Resolve the lockfile at the base commit. If it wasn't tracked there
-  // (first SmartSnap run, lockfile renamed, etc.) we can't diff, so bail.
-  let oldLockfile;
-  try {
-    oldLockfile = git(['show', `${baseRef}:${lockfileRepoPath}`]);
-  } catch {
-    throw new SmartSnapBailError(`SmartSnap: lockfile "${lockfileRepoPath}" not present at base ref ${baseRef}; running full snapshot set`);
-  }
-
-  // lockfileName is one of the hardcoded LOCKFILE_NAMES allowlist (reviewed, approved by security)
-  const newLockfile = fs.readFileSync(path.join(absManifestDir, lockfileName), 'utf8'); // nosemgrep
-
-  // Byte-identical lockfile means only package.json's non-dep fields changed —
-  // nothing shifted in the dependency tree, so there are no affected packages.
-  if (oldLockfile === newLockfile) return [];
-
-  // joined with the literal 'package.json' under the resolved absManifestDir (reviewed, approved by security)
-  const packageJson = fs.readFileSync(path.join(absManifestDir, 'package.json'), 'utf8'); // nosemgrep
-  const packageJsonRepoPath = manifestDir === '.' ? 'package.json' : `${manifestDir}/package.json`;
-  const oldPackageJson = git(['show', `${baseRef}:${packageJsonRepoPath}`]);
-  try {
-    const packageAffected = await diffLockfileDeps({
-      packageJson,
-      oldLockfile,
-      newLockfile,
-      lockfileType: lockfileName,
-      oldPackageJson
-    });
-    // The two statements below run only on Node >=18 where the snyk parser
-    // loads; the CI matrix runs the suite on Node 14, where the await above
-    // throws SNYK_LOCKFILE_PARSER_UNAVAILABLE and we take the catch instead.
-    /* istanbul ignore next */
-    log.debug(`SmartSnap: lockfile diff produced ${packageAffected.length} affected packages: ${packageAffected.join(', ')}`);
-    /* istanbul ignore next */
-    return packageAffected;
-  } catch (e) {
-    // snyk-nodejs-lockfile-parser is an optionalDependency (requires Node >=18).
-    // When it's missing we can't reason about the manifest change, so we
-    // conservatively bail to a full snapshot rather than under-snapshotting.
-    /* istanbul ignore else: a non-snyk diff error can only surface on Node >=18 */
-    if (e.code === 'SNYK_LOCKFILE_PARSER_UNAVAILABLE') {
-      throw new SmartSnapBailError(`SmartSnap: ${e.message}; running full snapshot set`);
-    }
-    /* istanbul ignore next: non-snyk diff errors only surface on Node >=18 */
-    throw e;
-  }
-}
-
-// Project each snapshot's importPath into the project-root frame and return
-// the unique set. Logs how many snapshots carried an importPath and warns
-// (with a sample) when none do, which usually means broken story extraction.
-export function extractStorybookPaths(snapshots, normalizeImportPath, log) {
-  const storybookPaths = [...new Set(snapshots.map(s => normalizeImportPath(s.importPath)).filter(Boolean))];
-  const snapshotsWithImportPath = snapshots.filter(s => s.importPath).length;
-  log.debug(`SmartSnap: ${snapshotsWithImportPath}/${snapshots.length} snapshots have importPath; ${storybookPaths.length} unique storybookPaths`);
-  if (storybookPaths.length === 0) {
-    log.warn(`SmartSnap: no snapshots have importPath set — check Storybook story extraction. Sample snapshot: ${JSON.stringify({
-      id: snapshots[0]?.id, name: snapshots[0]?.name, importPath: snapshots[0]?.importPath, keys: snapshots[0] ? Object.keys(snapshots[0]) : []
-    })}`);
-  } else {
-    log.debug(`SmartSnap: storybookPaths sample: ${storybookPaths.slice(0, 3).join(', ')}`);
-  }
-  return storybookPaths;
-}
-
-// Kick off the graph generation job and poll it to completion, returning the
-// graph payload. The sync status response carries the graph payload directly
-// on completion, so there's no second fetch — the returned `data` is the same
-// response body that used to come from `getSmartsnapGraphData`. Bails to a
-// full snapshot set if the job doesn't reach `done`.
-export async function runGraphGeneration(percy, buildId, payload, log) {
-  const { files, modules, storybookPaths, affectedNodes, affectedFileLocations } = payload;
-  log.debug(`SmartSnap: starting graph generation job ${JSON.stringify({ buildId, files, modules, storybookPaths, affectedNodes, affectedFileLocations })}`);
-  // Pass camelCase to the client, which snake_cases it to `affected_file_locations`
-  // for the API (same convention as storybookPaths → storybook_paths).
-  await percy.client.generateSmartsnapGraph(buildId, {
-    files, modules, storybookPaths, affectedNodes, affectedFileLocations
-  });
-
-  const { status, data } = await pollGraphStatus(percy, buildId, log);
-  if (status !== 'done') {
-    throw new SmartSnapBailError(`SmartSnap: graph generation did not complete (status: ${status ?? 'timed out'}); running full snapshot set`);
-  }
-
-  log.debug(`SmartSnap: affected stories result ${JSON.stringify(data?.affected_stories)}`);
-  return data;
-}
-
-// Trace rendering moved client-side: the API now returns the raw graph
-// (vertices, edges, transitive-closure triples) and we populate the bundled
-// HTML template here. Only runs when `trace` is enabled and the payload is
-// complete — anything missing means the BE couldn't produce a graph, so we
-// skip silently rather than write a broken page.
-export function maybeWriteTrace(trace, data, log) {
-  if (trace && data?.vertices && data?.edges && data?.transitive_closure_matrix_sparse) {
-    const tracePath = path.resolve(process.cwd(), 'trace.html');
-    try {
-      const html = renderGraphTraceHtml({
-        vertices: data.vertices,
-        edges: data.edges,
-        transitiveClosureMatrixSparse: data.transitive_closure_matrix_sparse
-      });
-      fs.writeFileSync(tracePath, html);
-      log.info(`SmartSnap: trace written to ${tracePath}`);
-    } catch (e) {
-      log.warn(`SmartSnap: failed to write trace.html: ${e.message}`);
-    }
-  }
-}
-
-// Filter the snapshots down to those the affected-graph reports plus any that
-// need a forced re-snapshot, log the summary, and return the kept list.
-//
-// Snapshots whose baseline review_state is `failed` or `rejected` have no
-// usable baseline image to diff against, and snapshots that don't appear in
-// the base build at all are brand-new (no baseline exists yet). In both cases
-// SmartSnap can't legitimately skip them — re-snapshot unconditionally
-// regardless of what the affected-graph reports. `baselineSnapshots` is null
-// when an explicit baseline is set, but `needsBaselineRefresh` short-circuits
-// on `baseline` before reading it.
-export function selectAffectedSnapshots(snapshots, data, baseline, baselineSnapshots, normalizeImportPath, log) {
-  const affected = new Set(data?.affected_stories || []);
-
-  const FORCE_RESNAPSHOT_STATES = new Set(['failed', 'rejected']);
-  const needsBaselineRefresh = name => {
-    if (baseline) return false;
-    const state = baselineSnapshots[name];
-    return state === undefined || FORCE_RESNAPSHOT_STATES.has(state);
-  };
-
-  // Use the same normalization on lookup so a snapshot's `./src/...` matches
-  // an affected-stories `src/...` from the API.
-  let forced = 0;
-  let affectedKept = 0;
-  const filtered = snapshots.filter(s => {
-    if (needsBaselineRefresh(s.name)) {
-      forced += 1;
-      return true;
-    }
-    const p = normalizeImportPath(s.importPath);
-    if (p && affected.has(p)) {
-      affectedKept += 1;
-      return true;
-    }
-    return false;
-  });
-  log.info(`SmartSnap: ${filtered.length} of ${snapshots.length} snapshots kept (${affectedKept} via affected-graph, ${forced} via missing/failed/rejected baseline)`);
-  return filtered;
-}
-
-// Given the mapped snapshots and storybook.smartSnap config, returns the subset of snapshots
-// that the SmartSnap graph reports as affected. On any recoverable failure, returns the input
-// list unchanged so the build runs as a full snapshot pass.
-export async function applySmartSnap(percy, snapshots, smartSnapConfig, buildDir) {
-  const log = logger('storybook:smartsnap');
-  const { baseline, untraced, trace, bailOnChanges, statsFile } = smartSnapConfig || {};
-
-  if (!buildDir) {
-    throw new SmartSnapBailError('SmartSnap requires the Storybook build directory (e.g. `percy storybook ./storybook-static`); URL and `start` modes are not supported. Running full snapshot set');
-  }
-
-  const projectRoot = gitProjectRoot();
-
-  const { files, modules, buildId } = await validateAndReadStats(buildDir, statsFile, projectRoot, log);
-
-  let { baseRef, affectedNodes, baselineSnapshots } = await getBaselineAndAffectedNodes(percy, baseline, log);
-
-  assertNoDotStorybookChange(affectedNodes);
-  assertNoBailOnChanges(affectedNodes, bailOnChanges);
-  affectedNodes = enforceUntraced(affectedNodes, untraced);
-
-  const packageAffectedNodes = await getAffectedPackages(affectedNodes, baseRef, projectRoot, log);
-
-  // With no traced files and no package-level changes there's nothing for the
-  // graph to reason about — bail to a full snapshot set rather than send an
-  // empty diff.
-  if (!affectedNodes.length && !packageAffectedNodes.length) {
-    throw new SmartSnapBailError('SmartSnap: no affected files or packages detected after filtering; running full snapshot set');
-  }
-
-  // Storybook's `entries[id].importPath` (and v6 `parameters.fileName`)
-  // is resolved relative to the directory percy was invoked from — for a
-  // monorepo storybook that's typically the package dir (e.g.
-  // `frontend/packages/design-stack`), not the git root. Example:
-  // `./modules/AgentCard/AgentCard.stories.tsx`.
-  //
-  // `affectedNodes` from `git diff --name-only` and the `files` array
-  // built by the stats compactor are both project-root-relative
-  // (e.g. `packages/design-stack/modules/AgentCard/AgentCard.stories.tsx`).
-  // Project them into the same frame so the BE matches importPath against
-  // affectedNodes without a cross-frame translation.
-  const dotPosix = './';
-  const dotPlatform = `.${path.sep}`;
-  const invocationDir = process.cwd();
-  const normalizeImportPath = p => {
-    if (typeof p !== 'string' || !p) return p;
-    let rel = p;
-    /* istanbul ignore next: on POSIX CI dotPlatform === dotPosix ('./'), so the
-       dotPosix else-if (a Windows-only '.\\' case) is unreachable there; ignore
-       the whole prefix-strip chain rather than a single dead else-if branch */
-    if (rel.startsWith(dotPlatform)) rel = rel.slice(dotPlatform.length);
-    else if (rel.startsWith(dotPosix)) rel = rel.slice(dotPosix.length);
-    // If the importPath happens to be absolute (older Storybook configs),
-    // path.resolve treats it as the target directly; otherwise it's joined
-    // against `invocationDir`. Then re-base against the git project root.
-    // rel comes from build stats file paths, re-based against projectRoot on the next line (reviewed, approved by security)
-    const abs = path.resolve(invocationDir, rel); // nosemgrep
-    const projRel = path.relative(projectRoot, abs);
-    // path.relative('','') → '' and `path.relative` produces backslashes
-    // on Windows; the stats `files` array uses the same — leave platform
-    // sep alone so the two stay byte-identical for the BE match.
-    /* istanbul ignore next: the `|| rel` fallback only triggers when an importPath
-       resolves exactly to projectRoot (projRel === ''), an edge that's unstable to
-       reproduce across OS symlink/tmpdir differences */
-    return projRel || rel;
-  };
-
-  const storybookPaths = extractStorybookPaths(snapshots, normalizeImportPath, log);
-
-  /* istanbul ignore next: packageAffectedNodes is only non-empty on Node >=18
-     (the snyk lockfile diff); on the Node-14 CI getAffectedPackages either
-     returns [] or bails before yielding packages, so this never runs there */
-  if (packageAffectedNodes.length) {
-    affectedNodes = [...affectedNodes, ...packageAffectedNodes];
-  }
-
-  // Line-level diff ranges for the indexed files, keyed by their `files` index.
-  const affectedFileLocations = getAffectedFileLocations(baseRef, files);
-
-  const data = await runGraphGeneration(percy, buildId, { files, modules, storybookPaths, affectedNodes, affectedFileLocations }, log);
-
-  maybeWriteTrace(trace, data, log);
-
-  return selectAffectedSnapshots(snapshots, data, baseline, baselineSnapshots, normalizeImportPath, log);
-}
diff --git a/packages/cli-command/test/graphTrace.test.js b/packages/cli-command/test/graphTrace.test.js
deleted file mode 100644
index 56ac9d530..000000000
--- a/packages/cli-command/test/graphTrace.test.js
+++ /dev/null
@@ -1,247 +0,0 @@
-import { renderGraphTraceHtml } from '../src/graphTrace.js';
-
-// The trace template embeds each payload as `const <name> = <json>;` on its
-// own line (see graphTraceTemplate.html). Pulling that line back out lets us
-// assert both the computed layout and the escaping that renderGraphTraceHtml
-// applies, without exporting the module-private helpers it delegates to.
-function embeddedJson(html, name) {
-  // test-only helper; name is a hardcoded literal ('vertices'/'edges') from the test, not external input (reviewed, approved by security)
-  let match = html.match(new RegExp(`const ${name} = (.*);`)); // nosemgrep
-  if (!match) throw new Error(`could not find embedded "${name}" payload`);
-  return match[1];
-}
-
-function vertices(html) {
-  return JSON.parse(embeddedJson(html, 'vertices'));
-}
-
-describe('graphTrace', () => {
-  describe('renderGraphTraceHtml() layout', () => {
-    it('pins dependencies to column 0 and maps their kind to "package"', () => {
-      let [dep] = vertices(renderGraphTraceHtml({
-        vertices: [{ kind: 'dependency', file_path: 'left-pad' }],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      expect(dep.col).toEqual(0);
-      expect(dep.kind).toEqual('package');
-    });
-
-    it('propagates columns along edges so a target sits right of its source', () => {
-      // a(dependency) -> b(component) -> c(component), no closure hints, so the
-      // edge constraint alone drives the columns: 0, 1, 2.
-      let laidOut = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'dependency', file_path: 'pkg-a' },
-          { kind: 'component', file_path: 'B.jsx' },
-          { kind: 'component', file_path: 'C.jsx' }
-        ],
-        edges: [[0, 1], [1, 2]],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      expect(laidOut.map(v => v.col)).toEqual([0, 1, 2]);
-    });
-
-    it('pushes every story past the rightmost non-story column', () => {
-      let laidOut = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'dependency', file_path: 'dep' },
-          { kind: 'component', file_path: 'Comp.jsx' },
-          { kind: 'story', file_path: 'A.stories.jsx' },
-          { kind: 'story', file_path: 'B.stories.jsx' }
-        ],
-        edges: [[0, 1], [1, 2], [1, 3]],
-        transitiveClosureMatrixSparse: [[0, 1, 1], [1, 2, 1], [1, 3, 1]]
-      }));
-
-      let maxNonStory = Math.max(...laidOut
-        .filter(v => v.kind !== 'story')
-        .map(v => v.col));
-
-      for (let v of laidOut.filter(v => v.kind === 'story')) {
-        expect(v.col).toBeGreaterThan(maxNonStory);
-      }
-    });
-
-    it('lets `changed` win over the underlying kind ("is_relevant")', () => {
-      let [comp, story] = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'component', file_path: 'Comp.jsx', changed: true },
-          { kind: 'story', file_path: 'S.stories.jsx', changed: true }
-        ],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      expect(comp.kind).toEqual('is_relevant');
-      expect(story.kind).toEqual('is_relevant');
-    });
-
-    it('maps an unknown kind to "component"', () => {
-      let [v] = vertices(renderGraphTraceHtml({
-        vertices: [{ kind: 'mystery', file_path: 'x' }],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      expect(v.kind).toEqual('component');
-    });
-
-    it('preserves each vertex index and name', () => {
-      let laidOut = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'component', file_path: 'first.jsx' },
-          { kind: 'component', file_path: 'second.jsx' }
-        ],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      expect(laidOut.map(v => v.index)).toEqual([0, 1]);
-      expect(laidOut.map(v => v.name)).toEqual(['first.jsx', 'second.jsx']);
-    });
-
-    it('assigns unique rows within a shared column', () => {
-      // Two same-column components must not collide on row 0.
-      let laidOut = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'component', file_path: 'A.jsx' },
-          { kind: 'component', file_path: 'B.jsx' }
-        ],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      let col0 = laidOut.filter(v => v.col === laidOut[0].col);
-      expect(col0.map(v => v.row).sort()).toEqual([0, 1]);
-    });
-
-    it('keeps a stable order for vertices that tie on rank and name', () => {
-      // Two same-kind vertices with identical names land in the same column
-      // group and hit the comparator's final equal-name branch (returns 0).
-      let laidOut = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'component', file_path: 'Dup.jsx' },
-          { kind: 'component', file_path: 'Dup.jsx' }
-        ],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      expect(laidOut.map(v => v.name)).toEqual(['Dup.jsx', 'Dup.jsx']);
-      expect(laidOut.map(v => v.row).sort()).toEqual([0, 1]);
-    });
-
-    it('orders a shared column by kind-rank then name', () => {
-      // All three dependencies are pinned to column 0, but the changed one ranks
-      // as is_relevant (1) vs package (0) for the others — mixed ranks in one
-      // column exercise the rank-differs branch, and the two packages exercise
-      // the name tie-break.
-      let laidOut = vertices(renderGraphTraceHtml({
-        vertices: [
-          { kind: 'dependency', file_path: 'z-pkg' },
-          { kind: 'dependency', file_path: 'a-pkg', changed: true },
-          { kind: 'dependency', file_path: 'm-pkg' }
-        ],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }));
-
-      let col0 = laidOut.filter(v => v.col === 0).sort((a, b) => a.row - b.row);
-      // packages (rank 0) sort by name first, then the changed/is_relevant one.
-      expect(col0.map(v => v.name)).toEqual(['m-pkg', 'z-pkg', 'a-pkg']);
-    });
-
-    it('skips self-loop, non-positive and lower-value closure triples', () => {
-      let render = () => renderGraphTraceHtml({
-        vertices: [
-          { kind: 'component', file_path: 'A.jsx' },
-          { kind: 'component', file_path: 'B.jsx' },
-          { kind: 'component', file_path: 'C.jsx' }
-        ],
-        edges: [],
-        transitiveClosureMatrixSparse: [
-          [0, 0, 5], // u === v → skipped
-          [0, 1, 0], // val <= 0 → skipped
-          [0, 2, 3], // sets incomingMax[2] = 3
-          [1, 2, 2] // 2 is not > 3 → incomingMax[2] left unchanged
-        ]
-      });
-
-      expect(render).not.toThrow();
-      expect(vertices(render()).length).toEqual(3);
-    });
-
-    it('renders empty payloads without throwing', () => {
-      let html = renderGraphTraceHtml({});
-      expect(embeddedJson(html, 'vertices')).toEqual('[]');
-      expect(embeddedJson(html, 'edges')).toEqual('[]');
-      expect(embeddedJson(html, 'transitive_closure_matrix_sparse')).toEqual('[]');
-    });
-
-    it('tolerates cyclic edges and out-of-range indices', () => {
-      // Cyclic edges would loop forever without the bounded iteration guard;
-      // out-of-range edge/closure indices must be ignored, not throw.
-      let render = () => renderGraphTraceHtml({
-        vertices: [
-          { kind: 'component', file_path: 'x' },
-          { kind: 'component', file_path: 'y' }
-        ],
-        edges: [[0, 1], [1, 0], [5, 9]],
-        transitiveClosureMatrixSparse: [[0, 99, 3]]
-      });
-
-      expect(render).not.toThrow();
-      expect(vertices(render()).length).toEqual(2);
-    });
-  });
-
-  describe('renderGraphTraceHtml() escaping', () => {
-    // Build a name carrying every sequence safeJson must neutralize so a
-    // malicious file_path can't break out of the surrounding <script> block.
-    const LS = String.fromCharCode(0x2028);
-    const PS = String.fromCharCode(0x2029);
-    const hostile = `</script><!--${LS}${PS}-->`;
-
-    function hostileLine() {
-      return embeddedJson(renderGraphTraceHtml({
-        vertices: [{ kind: 'component', file_path: hostile }],
-        edges: [],
-        transitiveClosureMatrixSparse: []
-      }), 'vertices');
-    }
-
-    it('escapes "</" so it cannot close the script tag', () => {
-      let line = hostileLine();
-      expect(line).not.toContain('</script>');
-      expect(line).toContain('<\\/script>');
-    });
-
-    it('escapes HTML comment open and close markers', () => {
-      let line = hostileLine();
-      expect(line).toContain('<\\!--');
-      expect(line).toContain('--\\>');
-    });
-
-    it('escapes U+2028 and U+2029 line/paragraph separators', () => {
-      let line = hostileLine();
-      expect(line).not.toContain(LS);
-      expect(line).not.toContain(PS);
-      expect(line).toContain('\\u2028');
-      expect(line).toContain('\\u2029');
-    });
-
-    it('escapes only the dangerous sequences, leaving the payload intact', () => {
-      // The output is embedded in a <script> block (JS), where `<\!--` reads as
-      // the literal `<!--`. Reverting just safeJson's extra escapes must yield
-      // parseable JSON that round-trips to the original hostile name — i.e. no
-      // structural characters were collateral-damaged.
-      let restored = hostileLine()
-        .split('<\\!--').join('<!--')
-        .split('--\\>').join('-->');
-      expect(JSON.parse(restored)[0].name).toEqual(hostile);
-    });
-  });
-});
diff --git a/packages/cli-command/test/index.test.js b/packages/cli-command/test/index.test.js
deleted file mode 100644
index 239a6703c..000000000
--- a/packages/cli-command/test/index.test.js
+++ /dev/null
@@ -1,17 +0,0 @@
-import * as cliCommand from '../src/index.js';
-
-// The barrel only re-exports; importing and touching each binding is enough to
-// execute it. Guards against an export being dropped or renamed.
-describe('index (public exports)', () => {
-  it('re-exports the command, legacy, smartsnap and common-package surface', () => {
-    expect(typeof cliCommand.default).toBe('function');
-    expect(typeof cliCommand.command).toBe('function');
-    expect(cliCommand._resetShutdownForTest).toBeDefined();
-    expect(cliCommand.legacyCommand).toBeDefined();
-    expect(cliCommand.flags).toBeDefined();
-    expect(typeof cliCommand.applySmartSnap).toBe('function');
-    expect(cliCommand.SmartSnapBailError.prototype).toBeInstanceOf(Error);
-    expect(cliCommand.PercyConfig).toBeDefined();
-    expect(cliCommand.logger).toBeDefined();
-  });
-});
diff --git a/packages/cli-command/test/lockfileDiff.test.js b/packages/cli-command/test/lockfileDiff.test.js
deleted file mode 100644
index 3165a86ab..000000000
--- a/packages/cli-command/test/lockfileDiff.test.js
+++ /dev/null
@@ -1,115 +0,0 @@
-import { diffLockfileDeps } from '../src/lockfileDiff.js';
-
-// Minimal npm package-lock v1 fixtures. snyk's buildDepTree resolves package
-// versions from the lockfile, so varying a `dependencies` entry's version is
-// what drives the resolved-version diff.
-function dep(version) {
-  return { version, resolved: `https://registry/${version}`, integrity: `sha512-${version}` };
-}
-
-function lockfile(deps) {
-  return JSON.stringify({
-    name: 'fixture',
-    version: '1.0.0',
-    lockfileVersion: 1,
-    requires: true,
-    dependencies: deps
-  });
-}
-
-function packageJson(fields) {
-  return JSON.stringify({ name: 'fixture', version: '1.0.0', ...fields });
-}
-
-// diffLockfileDeps loads the optional snyk-nodejs-lockfile-parser at call time;
-// it requires Node >=18. Skip the resolved-tree assertions on older runtimes
-// rather than fail spuriously (the unsupported-type guard runs before the
-// parse and is checked unconditionally).
-const nodeMajor = parseInt(process.versions.node.split('.')[0], 10);
-const describeSnyk = nodeMajor >= 18 ? describe : xdescribe;
-
-describe('lockfileDiff', () => {
-  describe('diffLockfileDeps()', () => {
-    it('throws on an unsupported lockfile type', async () => {
-      await expectAsync(diffLockfileDeps({
-        packageJson: packageJson({}),
-        oldPackageJson: packageJson({}),
-        oldLockfile: lockfile({}),
-        newLockfile: lockfile({}),
-        lockfileType: 'composer.lock'
-      })).toBeRejectedWithError(/Unsupported lockfile type: composer\.lock/);
-    });
-  });
-
-  describeSnyk('diffLockfileDeps() with snyk parser', () => {
-    const diff = opts => diffLockfileDeps({ lockfileType: 'package-lock.json', ...opts });
-
-    it('flags a top-level dependency whose resolved version changed', async () => {
-      // Same range, but the lockfile resolves to a new version.
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        packageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        oldLockfile: lockfile({ 'left-pad': dep('1.1.0') }),
-        newLockfile: lockfile({ 'left-pad': dep('1.2.0') })
-      })).toBeResolvedTo(['left-pad']);
-    });
-
-    it('flags an added top-level dependency', async () => {
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ dependencies: {} }),
-        packageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        oldLockfile: lockfile({}),
-        newLockfile: lockfile({ 'left-pad': dep('1.2.0') })
-      })).toBeResolvedTo(['left-pad']);
-    });
-
-    it('flags a removed top-level dependency', async () => {
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        packageJson: packageJson({ dependencies: {} }),
-        oldLockfile: lockfile({ 'left-pad': dep('1.2.0') }),
-        newLockfile: lockfile({})
-      })).toBeResolvedTo(['left-pad']);
-    });
-
-    it('flags a range-only bump even when the resolved version is identical', async () => {
-      // `^1.0.0` -> `^1.2.0` while both lockfiles already resolve to 1.2.0:
-      // the resolved-tree diff sees no change, so only the range diff catches it.
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        packageJson: packageJson({ dependencies: { 'left-pad': '^1.2.0' } }),
-        oldLockfile: lockfile({ 'left-pad': dep('1.2.0') }),
-        newLockfile: lockfile({ 'left-pad': dep('1.2.0') })
-      })).toBeResolvedTo(['left-pad']);
-    });
-
-    it('returns an empty list when nothing changed', async () => {
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        packageJson: packageJson({ dependencies: { 'left-pad': '^1.0.0' } }),
-        oldLockfile: lockfile({ 'left-pad': dep('1.2.0') }),
-        newLockfile: lockfile({ 'left-pad': dep('1.2.0') })
-      })).toBeResolvedTo([]);
-    });
-
-    it('ignores changes to devDependencies', async () => {
-      // devDeps are intentionally excluded from the top-level gate, so a
-      // version bump there must not surface.
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ devDependencies: { 'left-pad': '^1.0.0' } }),
-        packageJson: packageJson({ devDependencies: { 'left-pad': '^1.0.0' } }),
-        oldLockfile: lockfile({ 'left-pad': dep('1.1.0') }),
-        newLockfile: lockfile({ 'left-pad': dep('1.2.0') })
-      })).toBeResolvedTo([]);
-    });
-
-    it('includes peerDependencies in the top-level gate', async () => {
-      await expectAsync(diff({
-        oldPackageJson: packageJson({ peerDependencies: { react: '^17.0.0' } }),
-        packageJson: packageJson({ peerDependencies: { react: '^18.0.0' } }),
-        oldLockfile: lockfile({ react: dep('17.0.2') }),
-        newLockfile: lockfile({ react: dep('17.0.2') })
-      })).toBeResolvedTo(['react']);
-    });
-  });
-});
diff --git a/packages/cli-command/test/smartsnap.test.js b/packages/cli-command/test/smartsnap.test.js
deleted file mode 100644
index f9a4a0864..000000000
--- a/packages/cli-command/test/smartsnap.test.js
+++ /dev/null
@@ -1,743 +0,0 @@
-import fs from 'fs';
-import os from 'os';
-import path from 'path';
-import cp from 'child_process';
-import { mockfs } from './helpers.js';
-import {
-  SmartSnapBailError,
-  validateAndReadStats,
-  getBaselineAndAffectedNodes,
-  assertNoDotStorybookChange,
-  assertNoBailOnChanges,
-  enforceUntraced,
-  getAffectedPackages,
-  getAffectedFileLocations,
-  extractStorybookPaths,
-  runGraphGeneration,
-  maybeWriteTrace,
-  selectAffectedSnapshots,
-  applySmartSnap
-} from '../src/smartsnap.js';
-
-const NODE_MAJOR = parseInt(process.versions.node.split('.')[0], 10);
-
-// The applySmartSnap happy-path test asserts project-root-relative path matching
-// (normalizeImportPath). On Windows `git rev-parse --show-toplevel` (forward-slash,
-// drive-letter) and process.cwd() (back-slash) don't reconcile through
-// path.relative, so the match is platform-specific. Coverage for that path is
-// enforced on the POSIX (ubuntu) CI; on Windows (which runs `test`, not
-// `test:coverage`) we skip it rather than assert a platform-dependent result.
-const itPosix = path.sep === '/' ? it : xit;
-
-// Run a git command in `cwd`, throwing on non-zero exit. Used to build the
-// throwaway repos the integration tests diff against — applySmartSnap and
-// getAffectedPackages shell out to real git (spawnSync can't be spied), so the
-// only faithful way to exercise their git-driven paths is a real repo.
-function git(args, cwd) {
-  let r = cp.spawnSync('git', args, { cwd, encoding: 'utf8' });
-  if (r.status !== 0) throw new Error(`git ${args.join(' ')} failed: ${r.stderr || r.stdout}`);
-  return r.stdout;
-}
-
-// Build a throwaway git repo: write+commit `seed` ({ relpath: contents }), then
-// (optionally) write+commit `changed`. Returns { dir, baseSha }. realpathSync so
-// process.cwd() and `git rev-parse --show-toplevel` agree on macOS (/var vs
-// /private/var), keeping path.relative-based normalization byte-stable.
-function makeRepo(seed, changed) {
-  let dir = fs.realpathSync(fs.mkdtempSync(path.join(os.tmpdir(), 'smartsnap-')));
-  git(['init', '-q'], dir);
-  git(['config', 'user.email', 'test@example.com'], dir);
-  git(['config', 'user.name', 'Test'], dir);
-  let writeAll = files => {
-    for (let [rel, content] of Object.entries(files)) {
-      let abs = path.join(dir, rel);
-      fs.mkdirSync(path.dirname(abs), { recursive: true });
-      fs.writeFileSync(abs, content);
-    }
-  };
-  writeAll(seed);
-  git(['add', '-A'], dir);
-  git(['commit', '-qm', 'base'], dir);
-  let baseSha = git(['rev-parse', 'HEAD'], dir).trim();
-  if (changed) {
-    writeAll(changed);
-    git(['add', '-A'], dir);
-    git(['commit', '-qm', 'change'], dir);
-  }
-  return { dir, baseSha };
-}
-
-// Injected logger stub — every extracted function takes its `log` as an
-// argument, so we hand it spies rather than reaching for the global logger.
-function mockLog() {
-  return {
-    debug: jasmine.createSpy('debug'),
-    info: jasmine.createSpy('info'),
-    warn: jasmine.createSpy('warn')
-  };
-}
-
-// Assert an async call rejects with a SmartSnapBailError whose message carries
-// `substr`. Returns the caught error for any further assertions.
-async function expectBail(fn, substr) {
-  let err;
-  try {
-    await fn();
-  } catch (e) {
-    err = e;
-  }
-  expect(err).toBeInstanceOf(SmartSnapBailError);
-  if (substr) expect(err.message).toContain(substr);
-  return err;
-}
-
-// Identity normalizer: the path-frame translation is exercised end-to-end via
-// applySmartSnap; here we feed already-normalized importPaths so each unit test
-// stays focused on its own branch.
-const identity = p => p;
-
-describe('smartsnap', () => {
-  describe('validateAndReadStats()', () => {
-    const log = mockLog();
-
-    it('bails when the statsFile is not a .json filename', async () => {
-      await expectBail(
-        () => validateAndReadStats('/build', 'stats.txt', '/root', log),
-        'invalid statsFile');
-    });
-
-    it('bails when the stats file is missing from the build dir', async () => {
-      await mockfs({ '/build': null });
-      await expectBail(
-        () => validateAndReadStats('/build', undefined, '/root', log),
-        'not found in build directory');
-    });
-
-    it('bails when the resolved stats path is a directory', async () => {
-      await mockfs({ '/build/enriched-stats.json': null });
-      await expectBail(
-        () => validateAndReadStats('/build', undefined, '/root', log),
-        'is not a regular file');
-    });
-
-    it('bails when the stats file has no top-level buildId', async () => {
-      await mockfs({ '/build/enriched-stats.json': JSON.stringify({ modules: [] }) });
-      await expectBail(
-        () => validateAndReadStats('/build', undefined, '/root', log),
-        'missing a top-level "buildId"');
-    });
-
-    it('reads files, modules and buildId from a valid stats file', async () => {
-      await mockfs({ '/build/enriched-stats.json': JSON.stringify({ buildId: 'bld-1', modules: [] }) });
-      let res = await validateAndReadStats('/build', undefined, '/root', log);
-      expect(res).toEqual({ files: [], modules: [], buildId: 'bld-1' });
-    });
-
-    it('anchors a traversal-prefixed statsFile inside the build dir via basename', async () => {
-      // `path.basename('../../etc/foo.json')` is `foo.json`, so the read stays
-      // inside the build dir even when the config tries to escape it.
-      await mockfs({ '/build/foo.json': JSON.stringify({ buildId: 'b', modules: [] }) });
-      let res = await validateAndReadStats('/build', '../../etc/foo.json', '/root', log);
-      expect(res.buildId).toEqual('b');
-    });
-
-    it('streams modules: indexes src refs, leaves module refs, drops node_modules/string-id and id-less entries', async () => {
-      await mockfs({
-        '/build/enriched-stats.json': JSON.stringify({
-          buildId: 'b',
-          modules: [
-            {
-              id: '/root/src/A.js',
-              imports: [
-                { type: 'src', source: '/root/src/B.js', loc: [{ start: 38, end: 38 }, { start: 40, end: 42 }] },
-                { type: 'src', source: '/root/src/B.js' }, // duplicate → reuses the existing index
-                { type: 'src', source: 'lib/rel.js' }, // non-absolute → returned as-is, not indexed
-                { type: 'module', source: 'react' }
-              ],
-              passThroughExports: [{ type: 'src', source: '/root/src/C.js', loc: [{ start: 5, end: 5 }] }],
-              nonPassThroughExports: [{ type: 'module', source: 'lodash' }]
-            },
-            { id: '/root/node_modules/dep/index.js' }, // excluded → string id → dropped
-            {} // no id, no import/export arrays → kept as {}
-          ]
-        })
-      });
-
-      let res = await validateAndReadStats('/build', undefined, '/root', log);
-
-      expect(res.buildId).toEqual('b');
-      // Indexed in encounter order; node_modules paths are excluded (not indexed).
-      // `path.relative` uses the platform separator (back-slash on Windows).
-      expect(res.files).toEqual([path.join('src', 'A.js'), path.join('src', 'B.js'), path.join('src', 'C.js')]);
-      expect(res.modules.length).toEqual(2); // the string-id module is dropped
-      expect(res.modules[0].id).toEqual(0);
-      expect(res.modules[0].imports[0].source).toEqual(1); // src ref → index
-      expect(res.modules[0].imports[1].source).toEqual(1); // duplicate → same index
-      expect(res.modules[0].imports[2].source).toEqual('lib/rel.js'); // non-absolute → as-is
-      expect(res.modules[0].imports[3].source).toEqual('react'); // module ref → untouched
-      expect(res.modules[0].imports[0].loc).toEqual([[38, 38], [40, 42]]); // {start,end} spans → [start,end] tuples
-      expect(res.modules[0].passThroughExports[0].source).toEqual(2);
-      expect(res.modules[0].passThroughExports[0].loc).toEqual([[5, 5]]);
-      expect(res.modules[0].nonPassThroughExports).toEqual([{ type: 'module', source: 'lodash' }]);
-      expect(res.modules[1]).toEqual({});
-    });
-  });
-
-  // These hit real git (spawnSync is a native ESM binding we can't spy), so we
-  // lean on `git diff --name-only HEAD HEAD` being deterministically empty.
-  describe('getBaselineAndAffectedNodes()', () => {
-    const log = mockLog();
-
-    it('uses an explicit baseline and skips the API base lookup', async () => {
-      let lookup = jasmine.createSpy('getSmartsnapSnapshotNameToCommit');
-      let percy = { client: { getSmartsnapSnapshotNameToCommit: lookup } };
-
-      let res = await getBaselineAndAffectedNodes(percy, 'HEAD', log);
-
-      expect(res.baseRef).toEqual('HEAD');
-      expect(res.baselineSnapshots).toBeNull();
-      expect(res.affectedNodes).toEqual([]);
-      expect(lookup).not.toHaveBeenCalled();
-    });
-
-    it('falls back to the predicted base build commit when no baseline is set', async () => {
-      let percy = {
-        client: {
-          getSmartsnapSnapshotNameToCommit: async () => ({
-            base_build_commit_sha: 'HEAD',
-            snapshots: { 'Button: primary': 'approved' }
-          })
-        }
-      };
-
-      let res = await getBaselineAndAffectedNodes(percy, undefined, log);
-
-      expect(res.baseRef).toEqual('HEAD');
-      expect(res.affectedNodes).toEqual([]);
-      expect(res.baselineSnapshots).toEqual({ 'Button: primary': 'approved' });
-    });
-
-    it('defaults baselineSnapshots to {} when the API omits the snapshot map', async () => {
-      let percy = { client: { getSmartsnapSnapshotNameToCommit: async () => ({ base_build_commit_sha: 'HEAD' }) } };
-      let res = await getBaselineAndAffectedNodes(percy, undefined, log);
-      expect(res.baseRef).toEqual('HEAD');
-      expect(res.baselineSnapshots).toEqual({});
-    });
-
-    it('bails when the API predicts no base commit and no baseline is set', async () => {
-      let percy = { client: { getSmartsnapSnapshotNameToCommit: async () => ({}) } };
-      await expectBail(
-        () => getBaselineAndAffectedNodes(percy, undefined, log),
-        'could not predict a base build commit');
-    });
-
-    it('bails on an unsafe baseline ref before shelling out to git', async () => {
-      let percy = { client: {} };
-      await expectBail(
-        () => getBaselineAndAffectedNodes(percy, '--upload-pack=evil', log),
-        'unsafe baseline ref');
-    });
-  });
-
-  describe('assertNoDotStorybookChange()', () => {
-    it('throws when a changed path lives under .storybook', () => {
-      expect(() => assertNoDotStorybookChange(['src/a.js', '.storybook/preview.js']))
-        .toThrowMatching(e => e instanceof SmartSnapBailError && e.message.includes('.storybook'));
-    });
-
-    it('matches a .storybook segment regardless of separator', () => {
-      expect(() => assertNoDotStorybookChange(['a\\.storybook\\main.js'])).toThrow();
-    });
-
-    it('does not throw when nothing touches .storybook', () => {
-      expect(() => assertNoDotStorybookChange(['src/a.js', 'src/b.css'])).not.toThrow();
-    });
-  });
-
-  describe('assertNoBailOnChanges()', () => {
-    it('is a no-op when no patterns are configured', () => {
-      expect(() => assertNoBailOnChanges(['yarn.lock'], undefined)).not.toThrow();
-      expect(() => assertNoBailOnChanges(['yarn.lock'], [])).not.toThrow();
-    });
-
-    it('bails when a changed file matches a glob pattern', () => {
-      expect(() => assertNoBailOnChanges(['yarn.lock'], ['*.lock']))
-        .toThrowMatching(e => e instanceof SmartSnapBailError && e.message.includes('yarn.lock'));
-    });
-
-    it('bails on an exact (non-glob) pattern match', () => {
-      expect(() => assertNoBailOnChanges(['config/settings.js'], ['config/settings.js'])).toThrow();
-    });
-
-    it('does not bail when nothing matches', () => {
-      expect(() => assertNoBailOnChanges(['src/index.js'], ['*.css'])).not.toThrow();
-    });
-
-    it('treats an over-long glob as non-matching instead of throwing', () => {
-      // A >500-char glob makes patternToRegex throw; matchesPattern swallows it
-      // and reports no match rather than crashing on a bad config value.
-      expect(() => assertNoBailOnChanges(['yarn.lock'], ['*'.repeat(600)])).not.toThrow();
-    });
-  });
-
-  describe('enforceUntraced()', () => {
-    it('returns the list unchanged when no patterns are configured', () => {
-      let nodes = ['src/a.js', 'docs/readme.md'];
-      expect(enforceUntraced(nodes, undefined)).toEqual(nodes);
-      expect(enforceUntraced(nodes, [])).toEqual(nodes);
-    });
-
-    it('drops paths matching an untraced glob', () => {
-      let nodes = ['src/a.js', 'docs/readme.md', 'CHANGELOG.md'];
-      expect(enforceUntraced(nodes, ['**/*.md'])).toEqual(['src/a.js']);
-    });
-
-    it('keeps paths that do not match', () => {
-      let nodes = ['src/a.snap', 'src/a.js'];
-      expect(enforceUntraced(nodes, ['*.snap'])).toEqual(['src/a.snap', 'src/a.js']);
-    });
-  });
-
-  describe('getAffectedPackages()', () => {
-    const log = mockLog();
-
-    it('returns [] when no manifest files changed', async () => {
-      expect(await getAffectedPackages(['src/a.js', 'src/b.css'], 'HEAD', '/root', log)).toEqual([]);
-    });
-
-    it('bails when manifest changes span multiple directories', async () => {
-      await expectBail(
-        () => getAffectedPackages(['package.json', 'sub/package.json'], 'HEAD', '/root', log),
-        'span multiple directories');
-    });
-
-    it('bails when the manifest dir has no lockfile', async () => {
-      await mockfs({ '/root/pkg': null });
-      await expectBail(
-        () => getAffectedPackages(['pkg/package.json'], 'HEAD', '/root', log),
-        'no lockfile present there');
-    });
-
-    it('bails when the manifest dir has multiple lockfiles', async () => {
-      await mockfs({
-        '/root/pkg/yarn.lock': 'yarn',
-        '/root/pkg/package-lock.json': '{}'
-      });
-      await expectBail(
-        () => getAffectedPackages(['pkg/package.json'], 'HEAD', '/root', log),
-        'multiple lockfiles');
-    });
-  });
-
-  describe('extractStorybookPaths()', () => {
-    it('maps, dedupes and drops snapshots without an importPath', () => {
-      let log = mockLog();
-      let snapshots = [
-        { importPath: 'src/A.stories.js' },
-        { importPath: 'src/A.stories.js' },
-        { importPath: 'src/B.stories.js' },
-        { name: 'no-path' }
-      ];
-      expect(extractStorybookPaths(snapshots, identity, log))
-        .toEqual(['src/A.stories.js', 'src/B.stories.js']);
-    });
-
-    it('warns when no snapshot carries an importPath', () => {
-      let log = mockLog();
-      expect(extractStorybookPaths([{ name: 'x' }], identity, log)).toEqual([]);
-      expect(log.warn).toHaveBeenCalledTimes(1);
-    });
-
-    it('warns with an empty sample when given no snapshots at all', () => {
-      let log = mockLog();
-      expect(extractStorybookPaths([], identity, log)).toEqual([]);
-      expect(log.warn).toHaveBeenCalledTimes(1);
-    });
-  });
-
-  describe('runGraphGeneration()', () => {
-    it('starts the job and returns the graph payload on done', async () => {
-      let log = mockLog();
-      let generate = jasmine.createSpy('generateSmartsnapGraph');
-      let data = { affected_stories: ['src/A.stories.js'] };
-      let percy = {
-        client: {
-          generateSmartsnapGraph: generate,
-          getStatus: async () => ({ status: 'done', data })
-        }
-      };
-      // affectedFileLocations is forwarded verbatim; the client snake_cases it.
-      let payload = {
-        files: ['f'],
-        modules: [{ id: 0 }],
-        storybookPaths: ['p'],
-        affectedNodes: ['a'],
-        affectedFileLocations: { 0: [[3, 3], [6, 7]] }
-      };
-
-      let res = await runGraphGeneration(percy, 'bld-1', payload, log);
-
-      expect(res).toBe(data);
-      expect(generate).toHaveBeenCalledWith('bld-1', payload);
-    });
-
-    it('bails when the job does not reach done', async () => {
-      let log = mockLog();
-      let percy = {
-        client: {
-          generateSmartsnapGraph: async () => {},
-          getStatus: async () => ({ status: 'failed' })
-        }
-      };
-      await expectBail(
-        () => runGraphGeneration(percy, 'bld-1', { files: [], modules: [], storybookPaths: [], affectedNodes: [] }, log),
-        'did not complete');
-    });
-  });
-
-  describe('maybeWriteTrace()', () => {
-    const fullData = {
-      affected_stories: [],
-      vertices: [{ kind: 'component', file_path: 'A.jsx' }],
-      edges: [],
-      transitive_closure_matrix_sparse: []
-    };
-
-    it('renders and writes trace.html when enabled with a complete payload', () => {
-      let log = mockLog();
-      let write = spyOn(fs, 'writeFileSync');
-
-      maybeWriteTrace(true, fullData, log);
-
-      expect(write).toHaveBeenCalledTimes(1);
-      let [tracePath, html] = write.calls.mostRecent().args;
-      expect(tracePath).toEqual(path.resolve(process.cwd(), 'trace.html'));
-      expect(html).toContain('const vertices');
-      expect(log.info).toHaveBeenCalled();
-    });
-
-    it('does nothing when trace is disabled', () => {
-      let log = mockLog();
-      let write = spyOn(fs, 'writeFileSync');
-      maybeWriteTrace(false, fullData, log);
-      expect(write).not.toHaveBeenCalled();
-    });
-
-    it('does nothing when the graph payload is incomplete', () => {
-      let log = mockLog();
-      let write = spyOn(fs, 'writeFileSync');
-      maybeWriteTrace(true, { affected_stories: [], vertices: [], edges: [] }, log);
-      expect(write).not.toHaveBeenCalled();
-    });
-
-    it('warns (without throwing) when the write fails', () => {
-      let log = mockLog();
-      spyOn(fs, 'writeFileSync').and.throwError('disk full');
-      expect(() => maybeWriteTrace(true, fullData, log)).not.toThrow();
-      expect(log.warn).toHaveBeenCalled();
-    });
-  });
-
-  describe('selectAffectedSnapshots()', () => {
-    it('keeps only affected snapshots when an explicit baseline is set', () => {
-      let log = mockLog();
-      let snapshots = [
-        { name: 'A', importPath: 'src/A.stories.js' },
-        { name: 'B', importPath: 'src/B.stories.js' }
-      ];
-      let data = { affected_stories: ['src/A.stories.js'] };
-
-      let filtered = selectAffectedSnapshots(snapshots, data, 'main', null, identity, log);
-
-      expect(filtered.map(s => s.name)).toEqual(['A']);
-    });
-
-    it('forces re-snapshot for missing, failed and rejected baselines', () => {
-      let log = mockLog();
-      let snapshots = [
-        { name: 'A', importPath: 'src/A.stories.js' }, // affected + approved baseline
-        { name: 'B', importPath: 'src/B.stories.js' }, // failed baseline -> forced
-        { name: 'C', importPath: 'src/C.stories.js' }, // missing baseline -> forced
-        { name: 'D', importPath: 'src/D.stories.js' } // approved + not affected -> dropped
-      ];
-      let baselineSnapshots = { A: 'approved', B: 'failed', D: 'approved' };
-      let data = { affected_stories: ['src/A.stories.js'] };
-
-      let filtered = selectAffectedSnapshots(snapshots, data, undefined, baselineSnapshots, identity, log);
-
-      expect(filtered.map(s => s.name)).toEqual(['A', 'B', 'C']);
-    });
-
-    it('keeps nothing when the graph reports no affected stories and a baseline is set', () => {
-      let log = mockLog();
-      let snapshots = [{ name: 'A', importPath: 'src/A.stories.js' }];
-      let filtered = selectAffectedSnapshots(snapshots, { affected_stories: [] }, 'main', null, identity, log);
-      expect(filtered).toEqual([]);
-    });
-
-    it('treats a payload with no affected_stories field as none affected', () => {
-      let log = mockLog();
-      let snapshots = [{ name: 'A', importPath: 'src/A.stories.js' }];
-      // data.affected_stories is undefined → defaults to an empty set.
-      expect(selectAffectedSnapshots(snapshots, {}, 'main', null, identity, log)).toEqual([]);
-    });
-  });
-
-  describe('runGraphGeneration() polling', () => {
-    beforeEach(() => jasmine.clock().install());
-    afterEach(() => jasmine.clock().uninstall());
-
-    // Drive the async poll loop under fake timers: flush microtasks, then
-    // advance one 5s interval, repeat. Extra rounds after the promise settles
-    // are harmless, so we over-provision past POLL_ATTEMPTS (12).
-    async function drainPolls(promise, rounds = 20) {
-      for (let i = 0; i < rounds; i++) {
-        await Promise.resolve();
-        await Promise.resolve();
-        jasmine.clock().tick(5000);
-      }
-      return promise;
-    }
-
-    it('retries while in_progress and resolves once the job is done', async () => {
-      let log = mockLog();
-      let data = { affected_stories: [] };
-      let seq = ['in_progress', 'in_progress', 'done'];
-      let i = 0;
-      let percy = {
-        client: {
-          generateSmartsnapGraph: async () => {},
-          getStatus: async () => {
-            let s = seq[Math.min(i++, seq.length - 1)];
-            return s === 'done' ? { status: 'done', data } : { status: s };
-          }
-        }
-      };
-
-      let p = runGraphGeneration(percy, 'bld-1', { files: [], modules: [], storybookPaths: [], affectedNodes: [] }, log);
-      await expectAsync(drainPolls(p)).toBeResolvedTo(data);
-    });
-
-    it('bails after the poll loop times out without reaching done', async () => {
-      let log = mockLog();
-      let percy = {
-        client: {
-          generateSmartsnapGraph: async () => {},
-          getStatus: async () => ({ status: 'in_progress' })
-        }
-      };
-
-      let p = runGraphGeneration(percy, 'bld-1', { files: [], modules: [], storybookPaths: [], affectedNodes: [] }, log);
-      let err;
-      await drainPolls(p).catch(e => { err = e; });
-      expect(err).toBeInstanceOf(SmartSnapBailError);
-      expect(err.message).toContain('did not complete');
-    });
-  });
-
-  describe('getAffectedPackages() lockfile diff', () => {
-    let origCwd = process.cwd();
-    let repos = [];
-    afterEach(() => {
-      process.chdir(origCwd);
-      for (let d of repos.splice(0)) fs.rmSync(d, { recursive: true, force: true });
-    });
-
-    it('reads both lockfile sides and runs the diff (bails on Node <18 where snyk is unavailable)', async () => {
-      let log = mockLog();
-      let { dir, baseSha } = makeRepo(
-        {
-          'pkg/package.json': JSON.stringify({ name: 'x', dependencies: { 'left-pad': '^1.0.0' } }),
-          'pkg/yarn.lock': 'left-pad@^1.0.0:\n  version "1.1.0"\n'
-        },
-        { 'pkg/yarn.lock': 'left-pad@^1.0.0:\n  version "1.2.0"\n' });
-      repos.push(dir);
-      process.chdir(dir);
-
-      let res;
-      try {
-        res = await getAffectedPackages(['pkg/yarn.lock'], baseSha, dir, log);
-      } catch (e) {
-        res = e;
-      }
-
-      if (NODE_MAJOR >= 18) {
-        // On Node >=18 snyk loads; whether the diff resolves or surfaces a parse
-        // error is incidental — this branch isn't what the Node-14 CI measures.
-        expect(res).toBeDefined();
-      } else {
-        // On Node 14 diffLockfileDeps throws SNYK_LOCKFILE_PARSER_UNAVAILABLE,
-        // which getAffectedPackages downgrades to a full-set bail.
-        expect(res).toBeInstanceOf(SmartSnapBailError);
-        expect(res.message).toContain('snyk-nodejs-lockfile-parser is not available');
-      }
-    });
-
-    it('returns [] when only package.json (no lockfile content) changed', async () => {
-      let log = mockLog();
-      let { dir, baseSha } = makeRepo(
-        { 'pkg/package.json': '{"name":"x"}', 'pkg/yarn.lock': 'left-pad@^1.0.0:\n  version "1.1.0"\n' },
-        { 'pkg/package.json': '{"name":"x","version":"2.0.0"}' });
-      repos.push(dir);
-      process.chdir(dir);
-
-      // yarn.lock is byte-identical at base and HEAD → short-circuits to [].
-      expect(await getAffectedPackages(['pkg/package.json'], baseSha, dir, log)).toEqual([]);
-    });
-
-    it('bails when the lockfile was not tracked at the base ref', async () => {
-      let log = mockLog();
-      let { dir, baseSha } = makeRepo(
-        { 'pkg/package.json': '{"name":"x"}' }, // base: no lockfile
-        { 'pkg/yarn.lock': 'left-pad@^1.0.0:\n  version "1.2.0"\n' }); // HEAD: lockfile added
-      repos.push(dir);
-      process.chdir(dir);
-
-      // lockfile exists on disk (HEAD) but `git show <base>:pkg/yarn.lock` fails.
-      await expectBail(
-        () => getAffectedPackages(['pkg/yarn.lock'], baseSha, dir, log),
-        'not present at base ref');
-    });
-
-    it('handles a lockfile at the repo root (manifestDir ".")', async () => {
-      let log = mockLog();
-      let { dir, baseSha } = makeRepo(
-        { 'package.json': JSON.stringify({ name: 'x', dependencies: {} }), 'yarn.lock': 'a:\n  version "1.0.0"\n' },
-        { 'yarn.lock': 'a:\n  version "2.0.0"\n' });
-      repos.push(dir);
-      process.chdir(dir);
-
-      // manifestDir resolves to '.', exercising the root-vs-subdir repo-path branches.
-      let res;
-      try {
-        res = await getAffectedPackages(['yarn.lock'], baseSha, dir, log);
-      } catch (e) {
-        res = e;
-      }
-      if (NODE_MAJOR >= 18) expect(res).toBeDefined();
-      else expect(res).toBeInstanceOf(SmartSnapBailError);
-    });
-  });
-
-  describe('getAffectedFileLocations()', () => {
-    let origCwd = process.cwd();
-    let repos = [];
-    afterEach(() => {
-      process.chdir(origCwd);
-      for (let d of repos.splice(0)) fs.rmSync(d, { recursive: true, force: true });
-    });
-
-    function setup(seed, changed) {
-      let info = makeRepo(seed, changed);
-      repos.push(info.dir);
-      process.chdir(info.dir);
-      return info;
-    }
-
-    it('maps changed line ranges to file index, skipping unindexed and deleted files', () => {
-      let { dir, baseSha } = setup(
-        {
-          'src/A.js': 'a\nb\nc\nd\ne\n', // indexed; line 3 changed + lines 6-7 appended
-          'src/del.js': 'x\n' // indexed; deleted at HEAD → no new-side lines
-        },
-        {
-          'src/A.js': 'a\nb\nC\nd\ne\nf\ng\n',
-          'src/B.js': 'new\n' // NOT in the files index → skipped
-        });
-      // makeRepo's writeAll can't delete; drop del.js in a follow-up commit so the
-      // baseSha→HEAD diff carries its `+++ /dev/null` deletion hunk.
-      fs.rmSync(path.join(dir, 'src/del.js'));
-      git(['add', '-A'], dir);
-      git(['commit', '-qm', 'remove del'], dir);
-
-      // files index: A=0, del=1; B.js is absent (not indexed).
-      let res = getAffectedFileLocations(baseSha, ['src/A.js', 'src/del.js']);
-
-      // A.js: `@@ -3 +3 @@` → [3,3] and `@@ -5,0 +6,2 @@` → [6,7].
-      // del.js shows `+++ /dev/null` (pure deletion) → no entry. B.js unindexed → no entry.
-      expect(res).toEqual({ 0: [[3, 3], [6, 7]] });
-    });
-
-    it('ignores pure-deletion hunks that add no new lines', () => {
-      let { baseSha } = setup(
-        { 'src/A.js': '1\n2\n3\n' }, // line 2 removed, file kept
-        { 'src/A.js': '1\n3\n' });
-      // `@@ -2 +1,0 @@` → new-side count 0 → no range contributed.
-      expect(getAffectedFileLocations(baseSha, ['src/A.js'])).toEqual({});
-    });
-
-    it('returns an empty map when there is no diff', () => {
-      let { baseSha } = setup({ 'src/A.js': 'a\n' });
-      // baseSha === HEAD (no second commit) → `git diff <sha> HEAD` is empty.
-      expect(getAffectedFileLocations(baseSha, ['src/A.js'])).toEqual({});
-    });
-
-    it('bails on an unsafe base ref before shelling out to git', () => {
-      expect(() => getAffectedFileLocations('--upload-pack=evil', []))
-        .toThrowMatching(e => e instanceof SmartSnapBailError && e.message.includes('unsafe baseline ref'));
-    });
-  });
-
-  describe('applySmartSnap() [integration]', () => {
-    let origCwd = process.cwd();
-    let repos = [];
-    afterEach(() => {
-      process.chdir(origCwd);
-      for (let d of repos.splice(0)) fs.rmSync(d, { recursive: true, force: true });
-    });
-
-    function setup(seed, changed) {
-      let info = makeRepo(seed, changed);
-      repos.push(info.dir);
-      process.chdir(info.dir);
-      return info;
-    }
-
-    const STATS = JSON.stringify({ buildId: 'bld-1', modules: [] });
-
-    it('bails when no build directory is provided', async () => {
-      // pass an undefined config too, exercising the `smartSnapConfig || {}` guard.
-      await expectBail(
-        () => applySmartSnap({ client: {} }, [], undefined, undefined),
-        'requires the Storybook build directory');
-    });
-
-    it('bails when nothing is affected after filtering', async () => {
-      // baseline=HEAD → `git diff HEAD HEAD` is empty, no manifest changes, so
-      // both affectedNodes and packageAffectedNodes are empty.
-      let { dir } = setup({ 'sb/enriched-stats.json': STATS, 'src/A.stories.jsx': 'v1' });
-      await expectBail(
-        () => applySmartSnap({ client: {} }, [{ name: 'A', importPath: 'src/A.stories.jsx' }],
-          { baseline: 'HEAD' }, path.join(dir, 'sb')),
-        'no affected files or packages detected');
-    });
-
-    itPosix('keeps only the snapshots the affected-graph reports', async () => {
-      let { dir, baseSha } = setup(
-        { 'sb/enriched-stats.json': STATS, 'src/A.stories.jsx': 'v1' },
-        { 'src/A.stories.jsx': 'v2' });
-
-      // affected_stories arrive already in the project-root frame; normalizeImportPath
-      // produces the platform separator, so match it with path.join (back-slash on Windows).
-      let data = { affected_stories: [path.join('src', 'A.stories.jsx'), path.join('src', 'Dot.stories.jsx')] };
-      let generate = jasmine.createSpy('generateSmartsnapGraph');
-      let percy = {
-        client: {
-          generateSmartsnapGraph: generate,
-          getStatus: async () => ({ status: 'done', data })
-        }
-      };
-      let snapshots = [
-        { name: 'A', importPath: 'src/A.stories.jsx' }, // plain → kept
-        { name: 'Dot', importPath: './src/Dot.stories.jsx' }, // ./ prefix stripped → kept
-        { name: 'NoPath' }, // undefined importPath → dropped
-        { name: 'Empty', importPath: '' } // empty importPath → dropped
-      ];
-
-      let result = await applySmartSnap(percy, snapshots, { baseline: baseSha, trace: false }, path.join(dir, 'sb'));
-
-      expect(result.map(s => s.name).sort()).toEqual(['A', 'Dot']);
-      expect(generate).toHaveBeenCalled();
-    });
-  });
-});
diff --git a/packages/client/src/client.js b/packages/client/src/client.js
index df2b944f2..26443d539 100644
--- a/packages/client/src/client.js
+++ b/packages/client/src/client.js
@@ -413,64 +413,12 @@ export class PercyClient {
   }
 
   // Retrieves snapshot/comparison data by id. Requires a read access token.
-  // For `smartsnap_graph`, the API blocks (sync=true) until the graph job
-  // finishes and returns the graph payload directly in the response — there
-  // is no separate "data" endpoint to fetch after polling.
   async getStatus(type, ids) {
-    if (!['snapshot', 'comparison', 'smartsnap_graph'].includes(type)) throw new Error('Invalid type passed');
+    if (!['snapshot', 'comparison'].includes(type)) throw new Error('Invalid type passed');
     this.log.debug(`Getting ${type} status for ids ${ids}`);
     return this.get(`job_status?sync=true&type=${type}&id=${ids.join()}`);
   }
 
-  // SmartSnap endpoints authenticate against the project attached to the
-  // current Percy token (via the Authorization header). `generate-graph`
-  // takes a `build_id` (sourced from the bundler-emitted stats file) so
-  // multiple concurrent storybook builds for the same project don't share
-  // Redis state. `snapshot-name-to-commit` is project-scoped only.
-  // Graph status is polled through the shared `getStatus()` helper with
-  // type `smartsnap_graph` — the sync response returns the graph payload
-  // directly on completion.
-
-  async getSmartsnapSnapshotNameToCommit() {
-    this.log.debug('Smartsnap: looking up baselines...');
-    const qs = new URLSearchParams();
-
-    // Same git/PR context `createBuild` sends — the API uses these to predict
-    // the base build that *would* be selected if we called createBuild now,
-    // without actually creating one. Any missing field means the API falls
-    // back through the same strategy chain it would on real build creation.
-    if (this.env.git?.branch) qs.append('branch', this.env.git.branch);
-    if (this.env.target?.branch) qs.append('target_branch', this.env.target.branch);
-    if (this.env.git?.sha) qs.append('commit_sha', this.env.git.sha);
-    if (this.env.target?.commit) qs.append('target_commit_sha', this.env.target.commit);
-    if (this.env.pullRequest != null) qs.append('pull_request_number', String(this.env.pullRequest));
-    if (this.env.partial) qs.append('partial', 'true');
-
-    const query = qs.toString();
-    return this.get(
-      query ? `smartsnap/snapshot-name-to-commit?${query}` : 'smartsnap/snapshot-name-to-commit',
-      { identifier: 'smartsnap.snapshot_name_to_commit' }
-    );
-  }
-
-  async generateSmartsnapGraph(buildId, {
-    files,
-    modules,
-    storybookPaths,
-    affectedNodes,
-    affectedFileLocations
-  } = {}) {
-    this.log.debug(`Smartsnap: enqueueing graph build for build ${buildId}...`);
-    return this.post('smartsnap/generate-graph', {
-      build_id: buildId,
-      files,
-      modules,
-      storybook_paths: storybookPaths,
-      affected_nodes: affectedNodes,
-      affected_file_locations: affectedFileLocations
-    }, { identifier: 'smartsnap.generate_graph' });
-  }
-
   // Returns device details enabled on project associated with given token
   async getDeviceDetails(buildId) {
     try {
diff --git a/packages/client/test/client.test.js b/packages/client/test/client.test.js
index ffa81e503..0527dc820 100644
--- a/packages/client/test/client.test.js
+++ b/packages/client/test/client.test.js
@@ -811,127 +811,6 @@ describe('PercyClient', () => {
       await expectAsync(client.getStatus('comparison', [3, 4])).toBeResolvedTo({ data: '<<status-data-comparison>>' });
       await expectAsync(client.getStatus('comparison', [5])).toBeResolvedTo({ data: '<<status-data-comparison-2>>' });
     });
-
-    it('gets smartsnap_graph status (sync response carries graph payload on completion)', async () => {
-      const path = '/job_status?sync=true&type=smartsnap_graph&id=build-1';
-      const body = {
-        status: 'done',
-        data: {
-          affected_stories: ['src/Foo.stories.tsx'],
-          vertices: [{ kind: 'story', file_path: 'src/Foo.stories.tsx', changed: true }],
-          edges: [],
-          transitive_closure_matrix_sparse: []
-        }
-      };
-      api.reply(path, () => [200, body]);
-
-      await expectAsync(client.getStatus('smartsnap_graph', ['build-1'])).toBeResolvedTo(body);
-      expect(api.requests[path][0].method).toBe('GET');
-    });
-  });
-
-  describe('#getSmartsnapSnapshotNameToCommit()', () => {
-    const stubEnv = (overrides = {}) => {
-      Object.defineProperty(client.env, 'git', { value: overrides.git ?? {}, configurable: true });
-      Object.defineProperty(client.env, 'target', { value: overrides.target ?? {}, configurable: true });
-      Object.defineProperty(client.env, 'pullRequest', { value: overrides.pullRequest ?? null, configurable: true });
-      Object.defineProperty(client.env, 'partial', { value: overrides.partial ?? false, configurable: true });
-    };
-
-    beforeEach(() => stubEnv());
-
-    it('issues a GET with no query params when env is empty', async () => {
-      const path = '/smartsnap/snapshot-name-to-commit';
-      api.reply(path, () => [200, { data: { foo: 'sha-foo' } }]);
-
-      await expectAsync(
-        client.getSmartsnapSnapshotNameToCommit()
-      ).toBeResolvedTo({ data: { foo: 'sha-foo' } });
-
-      expect(api.requests[path]).toBeDefined();
-      expect(api.requests[path][0].method).toBe('GET');
-    });
-
-    it('appends git/target/PR/partial context when present in env', async () => {
-      stubEnv({
-        git: { branch: 'feature/x', sha: 'commit-sha-1' },
-        target: { branch: 'main', commit: 'commit-sha-2' },
-        pullRequest: 42,
-        partial: true
-      });
-
-      const expectedPath = '/smartsnap/snapshot-name-to-commit?' + [
-        'branch=feature%2Fx',
-        'target_branch=main',
-        'commit_sha=commit-sha-1',
-        'target_commit_sha=commit-sha-2',
-        'pull_request_number=42',
-        'partial=true'
-      ].join('&');
-
-      api.reply(expectedPath, () => [200, { data: { a: 'sha-a' } }]);
-
-      await expectAsync(
-        client.getSmartsnapSnapshotNameToCommit()
-      ).toBeResolvedTo({ data: { a: 'sha-a' } });
-
-      expect(api.requests[expectedPath]).toBeDefined();
-      expect(api.requests[expectedPath][0].method).toBe('GET');
-    });
-
-    it('includes pull_request_number=0 when env.pullRequest is 0 (not null)', async () => {
-      stubEnv({ pullRequest: 0 });
-
-      const expectedPath = '/smartsnap/snapshot-name-to-commit?pull_request_number=0';
-      api.reply(expectedPath, () => [200, { data: {} }]);
-
-      await expectAsync(
-        client.getSmartsnapSnapshotNameToCommit()
-      ).toBeResolvedTo({ data: {} });
-
-      expect(api.requests[expectedPath]).toBeDefined();
-    });
-  });
-
-  describe('#generateSmartsnapGraph()', () => {
-    it('POSTs build_id and graph payload to smartsnap/generate-graph', async () => {
-      api.reply('/smartsnap/generate-graph', () => [202, { status: 'queued' }]);
-
-      await expectAsync(client.generateSmartsnapGraph('build-1', {
-        files: ['a.js', 'b.js'],
-        modules: [{ id: 1, name: 'mod' }],
-        storybookPaths: ['stories/a.js'],
-        affectedNodes: ['node-1'],
-        affectedFileLocations: { 0: [[3, 3], [6, 7]], 1: [[1, 1]] }
-      })).toBeResolvedTo({ status: 'queued' });
-
-      expect(api.requests['/smartsnap/generate-graph']).toBeDefined();
-      expect(api.requests['/smartsnap/generate-graph'][0].method).toBe('POST');
-      expect(api.requests['/smartsnap/generate-graph'][0].body).toEqual({
-        build_id: 'build-1',
-        files: ['a.js', 'b.js'],
-        modules: [{ id: 1, name: 'mod' }],
-        storybook_paths: ['stories/a.js'],
-        affected_nodes: ['node-1'],
-        affected_file_locations: { 0: [[3, 3], [6, 7]], 1: [[1, 1]] }
-      });
-    });
-
-    it('sends undefined fields when called without payload', async () => {
-      api.reply('/smartsnap/generate-graph', () => [202, { status: 'queued' }]);
-
-      await expectAsync(client.generateSmartsnapGraph('build-2')).toBeResolvedTo({ status: 'queued' });
-
-      // JSON.stringify drops undefined values, so only build_id should remain in body
-      expect(api.requests['/smartsnap/generate-graph'][0].body).toEqual({ build_id: 'build-2' });
-    });
-
-    it('rejects when API returns an error', async () => {
-      api.reply('/smartsnap/generate-graph', () => [500, { error: 'boom' }]);
-
-      await expectAsync(client.generateSmartsnapGraph('build-3', {}))
-        .toBeRejected();
-    });
   });
 
   describe('#getDeviceDetails()', () => {
diff --git a/yarn.lock b/yarn.lock
index c7556a1fe..11f9cb4f7 100644
--- a/yarn.lock
+++ b/yarn.lock
@@ -10,13 +10,6 @@
     "@jridgewell/gen-mapping" "^0.3.5"
     "@jridgewell/trace-mapping" "^0.3.24"
 
-"@arcanis/slice-ansi@^1.1.1":
-  version "1.1.1"
-  resolved "https://registry.yarnpkg.com/@arcanis/slice-ansi/-/slice-ansi-1.1.1.tgz#0ee328a68996ca45854450033a3d161421dc4f55"
-  integrity sha512-xguP2WR2Dv0gQ7Ykbdb7BNCnPnIPB94uTi0Z2NvkRBEnhbwjOQ7QyQKJXrVQg4qDpiD9hA5l5cCwy/z2OXgc3w==
-  dependencies:
-    grapheme-splitter "^1.0.4"
-
 "@babel/cli@^7.11.6":
   version "7.24.7"
   resolved "https://registry.npmjs.org/@babel/cli/-/cli-7.24.7.tgz"
@@ -1187,13 +1180,6 @@
   resolved "https://registry.npmjs.org/@hutson/parse-repository-url/-/parse-repository-url-3.0.2.tgz"
   integrity sha512-H9XAx3hc0BQHY6l+IFSWHDySypcXsvsuLhgYLUGywmJ5pswRVQJUHpOsobnLYp2ZUaUlKiKDrgWWhosOwAEM8Q==
 
-"@isaacs/fs-minipass@^4.0.0":
-  version "4.0.1"
-  resolved "https://registry.yarnpkg.com/@isaacs/fs-minipass/-/fs-minipass-4.0.1.tgz#2d59ae3ab4b38fb4270bfa23d30f8e2e86c7fe32"
-  integrity sha512-wgm9Ehl2jpeqP3zw/7mo3kRHFp5MEDhqAdwy1fTGkHAwnkGOVsgpvQhL8B5n1qlb01jV3n/bI0ZfZp5lWA1k4w==
-  dependencies:
-    minipass "^7.0.4"
-
 "@isaacs/string-locale-compare@^1.1.0":
   version "1.1.0"
   resolved "https://registry.npmjs.org/@isaacs/string-locale-compare/-/string-locale-compare-1.1.0.tgz"
@@ -2274,18 +2260,6 @@
   dependencies:
     esquery "^1.0.1"
 
-"@pnpm/crypto.base32-hash@1.0.1":
-  version "1.0.1"
-  resolved "https://registry.yarnpkg.com/@pnpm/crypto.base32-hash/-/crypto.base32-hash-1.0.1.tgz#e0eeff4ae736d2a781e41041206a65fe78704ffd"
-  integrity sha512-pzAXNn6KxTA3kbcI3iEnYs4vtH51XEVqmK/1EiD18MaPKylhqy8UvMJK3zKG+jeP82cqQbozcTGm4yOQ8i3vNw==
-  dependencies:
-    rfc4648 "^1.5.1"
-
-"@pnpm/types@8.9.0":
-  version "8.9.0"
-  resolved "https://registry.yarnpkg.com/@pnpm/types/-/types-8.9.0.tgz#9636d5f0642793432f72609b79458ca9be049b02"
-  integrity sha512-3MYHYm8epnciApn6w5Fzx6sepawmsNU7l6lvIq+ER22/DPSrr83YMhU/EQWnf4lORn2YyiXFj0FJSyJzEtIGmw==
-
 "@protobufjs/aspromise@^1.1.1", "@protobufjs/aspromise@^1.1.2":
   version "1.1.2"
   resolved "https://registry.yarnpkg.com/@protobufjs/aspromise/-/aspromise-1.1.2.tgz#9b8b0cc663d669a7d8f6f5d0893a14d348f30fbf"
@@ -2404,77 +2378,11 @@
   resolved "https://registry.npmjs.org/@sinclair/typebox/-/typebox-0.25.24.tgz"
   integrity sha512-XJfwUVUKDHF5ugKwIcxEgc9k8b7HbznCp6eUfWgu710hMPNIO4aw4/zB5RogDQz8nd6gyCDpU9O/m6qYEWY6yQ==
 
-"@sindresorhus/is@^4.0.0":
-  version "4.6.0"
-  resolved "https://registry.yarnpkg.com/@sindresorhus/is/-/is-4.6.0.tgz#3c7c9c46e678feefe7a2e5bb609d3dbd665ffb3f"
-  integrity sha512-t09vSN3MdfsyCHoFcTRCH/iUtG7OJ0CsjzB8cjAmKc/va/kIgeDI/TxsigdncE/4be734m0cvIYwNaV4i2XqAw==
-
-"@snyk/dep-graph@^2.12.0":
-  version "2.16.8"
-  resolved "https://registry.yarnpkg.com/@snyk/dep-graph/-/dep-graph-2.16.8.tgz#d5f5940e6758618a9c963b0966aecba575c766e9"
-  integrity sha512-vlUCjaV8XE6bJEZ7ZfyMnOb+oUWNDzSMeeuO9ek32JR4tpnIgb1DT6EFJw3zeFDxk0e9cb/PznK/7JxyM1TL7Q==
-  dependencies:
-    event-loop-spinner "^2.1.0"
-    lodash.clone "^4.5.0"
-    lodash.constant "^3.0.0"
-    lodash.filter "^4.6.0"
-    lodash.foreach "^4.5.0"
-    lodash.isempty "^4.4.0"
-    lodash.isequal "^4.5.0"
-    lodash.isfunction "^3.0.9"
-    lodash.isundefined "^3.0.1"
-    lodash.map "^4.6.0"
-    lodash.reduce "^4.6.0"
-    lodash.size "^4.2.0"
-    lodash.transform "^4.6.0"
-    lodash.union "^4.6.0"
-    lodash.values "^4.3.0"
-    object-hash "^3.0.0"
-    packageurl-js "2.0.1"
-    semver "^7.0.0"
-    tslib "^2"
-
-"@snyk/error-catalog-nodejs-public@^5.16.0":
-  version "5.81.0"
-  resolved "https://registry.yarnpkg.com/@snyk/error-catalog-nodejs-public/-/error-catalog-nodejs-public-5.81.0.tgz#8ee889eb016de0ef693e8b661f5a42d28a05da9e"
-  integrity sha512-vR3fVLYTdHXujpLp/u2afrqQwCHNQj7sb3EKwqTNpgdtgJhluetcc/Qrf+PfMWvh/VioKCi17wO3nWaaGVAdyw==
-  dependencies:
-    tslib "^2.8.1"
-    uuid "^11.1.0"
-
-"@snyk/graphlib@2.1.9-patch.3":
-  version "2.1.9-patch.3"
-  resolved "https://registry.yarnpkg.com/@snyk/graphlib/-/graphlib-2.1.9-patch.3.tgz#b8edb2335af1978db7f3cb1f28f5d562960acf23"
-  integrity sha512-bBY9b9ulfLj0v2Eer0yFYa3syVeIxVKl2EpxSrsVeT4mjA0CltZyHsF0JjoaGXP27nItTdJS5uVsj1NA+3aE+Q==
-  dependencies:
-    lodash.clone "^4.5.0"
-    lodash.constant "^3.0.0"
-    lodash.filter "^4.6.0"
-    lodash.foreach "^4.5.0"
-    lodash.has "^4.5.2"
-    lodash.isempty "^4.4.0"
-    lodash.isfunction "^3.0.9"
-    lodash.isundefined "^3.0.1"
-    lodash.keys "^4.2.0"
-    lodash.map "^4.6.0"
-    lodash.reduce "^4.6.0"
-    lodash.size "^4.2.0"
-    lodash.transform "^4.6.0"
-    lodash.union "^4.6.0"
-    lodash.values "^4.3.0"
-
 "@socket.io/component-emitter@~3.1.0":
   version "3.1.2"
   resolved "https://registry.npmjs.org/@socket.io/component-emitter/-/component-emitter-3.1.2.tgz"
   integrity sha512-9BCxFwvbGg/RsZK9tjXd8s4UcwR0MWeFQ1XEKIQVVvAGJyINdrqKMcTRyLoK8Rse1GjzLV9cwjWV1olXRWEXVA==
 
-"@szmarczak/http-timer@^4.0.5":
-  version "4.0.6"
-  resolved "https://registry.yarnpkg.com/@szmarczak/http-timer/-/http-timer-4.0.6.tgz#b4a914bb62e7c272d4e5989fe4440f812ab1d807"
-  integrity sha512-4BAffykYOgO+5nzBWYwE3W90sBgLJoUPRWWcL8wlyiM8IB8ipJz3UMJ9KXQd1RKQXpKp8Tutn80HZtWsu2u76w==
-  dependencies:
-    defer-to-connect "^2.0.0"
-
 "@tootallnate/once@2":
   version "2.0.0"
   resolved "https://registry.npmjs.org/@tootallnate/once/-/once-2.0.0.tgz"
@@ -2490,16 +2398,6 @@
   resolved "https://registry.npmjs.org/@tsd/typescript/-/typescript-5.4.5.tgz"
   integrity sha512-saiCxzHRhUrRxQV2JhH580aQUZiKQUXI38FcAcikcfOomAil4G4lxT0RfrrKywoAYP/rqAdYXYmNRLppcd+hQQ==
 
-"@types/cacheable-request@^6.0.1":
-  version "6.0.3"
-  resolved "https://registry.yarnpkg.com/@types/cacheable-request/-/cacheable-request-6.0.3.tgz#a430b3260466ca7b5ca5bfd735693b36e7a9d183"
-  integrity sha512-IQ3EbTzGxIigb1I3qPZc1rWJnH0BmSKv5QYTalEwweFvyBDLSAe24zP0le/hyi7ecGfZVlIVAg4BZqb8WBwKqw==
-  dependencies:
-    "@types/http-cache-semantics" "*"
-    "@types/keyv" "^3.1.4"
-    "@types/node" "*"
-    "@types/responselike" "^1.0.0"
-
 "@types/cookie@^0.4.1":
   version "0.4.1"
   resolved "https://registry.npmjs.org/@types/cookie/-/cookie-0.4.1.tgz"
@@ -2510,11 +2408,6 @@
   resolved "https://registry.npmjs.org/@types/cors/-/cors-2.8.12.tgz"
   integrity sha512-vt+kDhq/M2ayberEtJcIN/hxXy1Pk+59g2FV/ZQceeaTyCtCucjL2Q7FXlFjtWn4n15KCr1NE2lNNFhp0lEThw==
 
-"@types/emscripten@^1.39.6":
-  version "1.41.5"
-  resolved "https://registry.yarnpkg.com/@types/emscripten/-/emscripten-1.41.5.tgz#5670e4b52b098691cb844b84ee48c9176699b68d"
-  integrity sha512-cMQm7pxu6BxtHyqJ7mQZ2kXWV5SLmugybFdHCBbJ5eHzOo6VhBckEgAT3//rP5FwPHNPeEiq4SmQ5ucBwsOo4Q==
-
 "@types/eslint@^7.2.13":
   version "7.28.1"
   resolved "https://registry.npmjs.org/@types/eslint/-/eslint-7.28.1.tgz"
@@ -2538,11 +2431,6 @@
   resolved "https://registry.npmjs.org/@types/estree/-/estree-1.0.0.tgz"
   integrity sha512-WulqXMDUTYAXCjZnk6JtIHPigp55cVtDgDrO2gHRwhyJto21+1zbVCtOYB2L1F9w4qCQ0rOGWBnBe0FNTiEJIQ==
 
-"@types/http-cache-semantics@*":
-  version "4.2.0"
-  resolved "https://registry.yarnpkg.com/@types/http-cache-semantics/-/http-cache-semantics-4.2.0.tgz#f6a7788f438cbfde15f29acad46512b4c01913b3"
-  integrity sha512-L3LgimLHXtGkWikKnsPg0/VFx9OGZaC+eN1u4r+OB1XRqH3meBIAVC2zr1WdMH+RHmnRkqliQAOHNJ/E0j/e0Q==
-
 "@types/json-schema@*":
   version "7.0.9"
   resolved "https://registry.npmjs.org/@types/json-schema/-/json-schema-7.0.9.tgz"
@@ -2553,13 +2441,6 @@
   resolved "https://registry.npmjs.org/@types/json5/-/json5-0.0.29.tgz"
   integrity sha1-7ihweulOEdK4J7y+UnC86n8+ce4=
 
-"@types/keyv@^3.1.4":
-  version "3.1.4"
-  resolved "https://registry.yarnpkg.com/@types/keyv/-/keyv-3.1.4.tgz#3ccdb1c6751b0c7e52300bcdacd5bcbf8faa75b6"
-  integrity sha512-BQ5aZNSCpj7D6K2ksrRCTmKRLEpnPvWDiLPfoGyhZ++8YtiK9d/3DBKPJgry359X/P1PfruyYwvnvwFjuEiEIg==
-  dependencies:
-    "@types/node" "*"
-
 "@types/minimatch@^3.0.3":
   version "3.0.3"
   resolved "https://registry.npmjs.org/@types/minimatch/-/minimatch-3.0.3.tgz"
@@ -2602,23 +2483,6 @@
   resolved "https://registry.npmjs.org/@types/resolve/-/resolve-1.20.2.tgz"
   integrity sha512-60BCwRFOZCQhDncwQdxxeOEEkbc5dIMccYLwbxsS4TUNeVECQ/pBJ0j09mrHOl/JJvpRPGwO9SvE4nR2Nb/a4Q==
 
-"@types/responselike@^1.0.0":
-  version "1.0.3"
-  resolved "https://registry.yarnpkg.com/@types/responselike/-/responselike-1.0.3.tgz#cc29706f0a397cfe6df89debfe4bf5cea159db50"
-  integrity sha512-H/+L+UkTV33uf49PH5pCAUBVPNj2nDBXTN+qS1dOwyyg24l3CcicicCA7ca+HMvJBZcFgl5r8e+RR6elsb4Lyw==
-  dependencies:
-    "@types/node" "*"
-
-"@types/semver@^7.1.0":
-  version "7.7.1"
-  resolved "https://registry.yarnpkg.com/@types/semver/-/semver-7.7.1.tgz#3ce3af1a5524ef327d2da9e4fd8b6d95c8d70528"
-  integrity sha512-FmgJfu+MOcQ370SD0ev7EI8TlCAfKYU+B4m5T3yXc1CiRN94g/SZPtsCkk506aUDtlMnFZvasDwHHUcZUEaYuA==
-
-"@types/treeify@^1.0.0":
-  version "1.0.3"
-  resolved "https://registry.yarnpkg.com/@types/treeify/-/treeify-1.0.3.tgz#f502e11e851b1464d5e80715d5ce3705ad864638"
-  integrity sha512-hx0o7zWEUU4R2Amn+pjCBQQt23Khy/Dk56gQU5xi5jtPL1h83ACJCeFaB2M/+WO1AntvWrSoVnnCAfI1AQH4Cg==
-
 "@types/yauzl@^2.9.1":
   version "2.9.1"
   resolved "https://registry.npmjs.org/@types/yauzl/-/yauzl-2.9.1.tgz"
@@ -2626,54 +2490,6 @@
   dependencies:
     "@types/node" "*"
 
-"@yarnpkg/core@^4.4.1":
-  version "4.7.0"
-  resolved "https://registry.yarnpkg.com/@yarnpkg/core/-/core-4.7.0.tgz#ece83ad51eadb7786df38dbf7314cd77917d72fb"
-  integrity sha512-/zOgPAcDvwx8NDzLidDFaZDg+3Jgv824C4fudqZFlUuWv/BzOEtjfRTAyi+O0h15FyT7YvlsMnQpmnIQB+LgKw==
-  dependencies:
-    "@arcanis/slice-ansi" "^1.1.1"
-    "@types/semver" "^7.1.0"
-    "@types/treeify" "^1.0.0"
-    "@yarnpkg/fslib" "^3.1.5"
-    "@yarnpkg/libzip" "^3.2.2"
-    "@yarnpkg/parsers" "^3.0.3"
-    "@yarnpkg/shell" "^4.1.3"
-    camelcase "^5.3.1"
-    chalk "^4.1.2"
-    ci-info "^4.0.0"
-    clipanion "^4.0.0-rc.2"
-    cross-spawn "^7.0.3"
-    diff "^5.1.0"
-    dotenv "^16.3.1"
-    es-toolkit "^1.39.7"
-    fast-glob "^3.2.2"
-    got "^11.7.0"
-    hpagent "^1.2.0"
-    micromatch "^4.0.2"
-    p-limit "^2.2.0"
-    semver "^7.1.2"
-    strip-ansi "^6.0.0"
-    tar "^7.5.3"
-    tinylogic "^2.0.0"
-    treeify "^1.1.0"
-    tslib "^2.4.0"
-
-"@yarnpkg/fslib@^3.1.2", "@yarnpkg/fslib@^3.1.3", "@yarnpkg/fslib@^3.1.5":
-  version "3.1.5"
-  resolved "https://registry.yarnpkg.com/@yarnpkg/fslib/-/fslib-3.1.5.tgz#e06924ab0bb312abe4e1e23a462cd481c446741e"
-  integrity sha512-hXaPIWl5GZA+rXcx+yaKWUuePJruZuD+3A5A2X6paEBfFsyCD7oEp88lSMj1ym1ehBWUmhNH/YGOp+SrbmSBPg==
-  dependencies:
-    tslib "^2.4.0"
-
-"@yarnpkg/libzip@^3.2.2":
-  version "3.2.2"
-  resolved "https://registry.yarnpkg.com/@yarnpkg/libzip/-/libzip-3.2.2.tgz#075a25ff850e898dfb1c68df515ddaf5809bbcbe"
-  integrity sha512-Kqxgjfy6SwwC4tTGQYToIWtUhIORTpkowqgd9kkMiBixor0eourHZZAggt/7N4WQKt9iCyPSkO3Xvr44vXUBAw==
-  dependencies:
-    "@types/emscripten" "^1.39.6"
-    "@yarnpkg/fslib" "^3.1.3"
-    tslib "^2.4.0"
-
 "@yarnpkg/lockfile@^1.1.0":
   version "1.1.0"
   resolved "https://registry.npmjs.org/@yarnpkg/lockfile/-/lockfile-1.1.0.tgz"
@@ -2687,28 +2503,6 @@
     js-yaml "^3.10.0"
     tslib "^2.4.0"
 
-"@yarnpkg/parsers@^3.0.3":
-  version "3.0.3"
-  resolved "https://registry.yarnpkg.com/@yarnpkg/parsers/-/parsers-3.0.3.tgz#624f35f242c1115a48beb1fd12aed610bcd8e823"
-  integrity sha512-mQZgUSgFurUtA07ceMjxrWkYz8QtDuYkvPlu0ZqncgjopQ0t6CNEo/OSealkmnagSUx8ZD5ewvezUwUuMqutQg==
-  dependencies:
-    js-yaml "^3.10.0"
-    tslib "^2.4.0"
-
-"@yarnpkg/shell@^4.1.3":
-  version "4.1.3"
-  resolved "https://registry.yarnpkg.com/@yarnpkg/shell/-/shell-4.1.3.tgz#a99a1bcfb8ca1d896440046b71d2b254d0712948"
-  integrity sha512-5igwsHbPtSAlLdmMdKqU3atXjwhtLFQXsYAG0sn1XcPb3yF8WxxtWxN6fycBoUvFyIHFz1G0KeRefnAy8n6gdw==
-  dependencies:
-    "@yarnpkg/fslib" "^3.1.2"
-    "@yarnpkg/parsers" "^3.0.3"
-    chalk "^4.1.2"
-    clipanion "^4.0.0-rc.2"
-    cross-spawn "^7.0.3"
-    fast-glob "^3.2.2"
-    micromatch "^4.0.2"
-    tslib "^2.4.0"
-
 "@zkochan/js-yaml@0.0.6":
   version "0.0.6"
   resolved "https://registry.npmjs.org/@zkochan/js-yaml/-/js-yaml-0.0.6.tgz"
@@ -3000,11 +2794,6 @@ astral-regex@^2.0.0:
   resolved "https://registry.npmjs.org/astral-regex/-/astral-regex-2.0.0.tgz"
   integrity sha512-Z7tMw1ytTXt5jqMcOP+OQteU1VuNK9Y02uuJtKQ1Sv69jXQKKg5cibLwGJow8yzZP+eAc18EmLGPal0bp36rvQ==
 
-async@^3.2.2:
-  version "3.2.6"
-  resolved "https://registry.yarnpkg.com/async/-/async-3.2.6.tgz#1b0728e14929d51b85b449b7f06e27c1145e38ce"
-  integrity sha512-htCUDlxyyCLMgaM3xXg0C0LW2xqfuQ6p05pCEIsXuyQ+a1koYKTuBMzRNwmybfLgvJDMd0r1LTn4+E0Ti6C2AA==
-
 async@^3.2.3:
   version "3.2.4"
   resolved "https://registry.npmjs.org/async/-/async-3.2.4.tgz"
@@ -3269,24 +3058,6 @@ cacache@^16.0.0, cacache@^16.0.6, cacache@^16.1.0:
     tar "^6.1.11"
     unique-filename "^1.1.1"
 
-cacheable-lookup@^5.0.3:
-  version "5.0.4"
-  resolved "https://registry.yarnpkg.com/cacheable-lookup/-/cacheable-lookup-5.0.4.tgz#5a6b865b2c44357be3d5ebc2a467b032719a7005"
-  integrity sha512-2/kNscPhpcxrOigMZzbiWF7dz8ilhb/nIHU3EyZiXWXpeq/au8qJ8VhdftMkty3n7Gj6HIGalQG8oiBNB3AJgA==
-
-cacheable-request@^7.0.2:
-  version "7.0.4"
-  resolved "https://registry.yarnpkg.com/cacheable-request/-/cacheable-request-7.0.4.tgz#7a33ebf08613178b403635be7b899d3e69bbe817"
-  integrity sha512-v+p6ongsrp0yTGbJXjgxPow2+DL93DASP4kXCDKb8/bwRtt9OEF3whggkkDkGNzgcWy2XaF4a8nZglC7uElscg==
-  dependencies:
-    clone-response "^1.0.2"
-    get-stream "^5.1.0"
-    http-cache-semantics "^4.0.0"
-    keyv "^4.0.0"
-    lowercase-keys "^2.0.0"
-    normalize-url "^6.0.1"
-    responselike "^2.0.0"
-
 caching-transform@^4.0.0:
   version "4.0.0"
   resolved "https://registry.npmjs.org/caching-transform/-/caching-transform-4.0.0.tgz"
@@ -3357,7 +3128,7 @@ chalk@^2.0.1, chalk@^2.1.0, chalk@^2.4.2:
     escape-string-regexp "^1.0.5"
     supports-color "^5.3.0"
 
-chalk@^4.0.0, chalk@^4.0.2, chalk@^4.1.0, chalk@^4.1.1, chalk@^4.1.2:
+chalk@^4.0.0, chalk@^4.0.2, chalk@^4.1.0, chalk@^4.1.1:
   version "4.1.2"
   resolved "https://registry.npmjs.org/chalk/-/chalk-4.1.2.tgz"
   integrity sha512-oKnbhFyRIXpUuez8iBMmyEa4nbj4IOQyuhc/wy9kY7/WVPcwIO9VA668Pu8RkO7+0G76SLROeyw9CpQ061i4mA==
@@ -3390,21 +3161,11 @@ chownr@^2.0.0:
   resolved "https://registry.npmjs.org/chownr/-/chownr-2.0.0.tgz"
   integrity sha512-bIomtDF5KGpdogkLd9VspvFzk9KfpyyGlS8YFVZl7TGPBHL5snIOnxeshwVgPteQ9b4Eydl+pVbIyE1DcvCWgQ==
 
-chownr@^3.0.0:
-  version "3.0.0"
-  resolved "https://registry.yarnpkg.com/chownr/-/chownr-3.0.0.tgz#9855e64ecd240a9cc4267ce8a4aa5d24a1da15e4"
-  integrity sha512-+IxzY9BZOQd/XuYPRmrvEVjF/nqj5kgT4kEq7VofrDoM1MxoRjEWkrCC3EtLi59TVawxTAn+orJwFQcrqEN1+g==
-
 ci-info@^2.0.0:
   version "2.0.0"
   resolved "https://registry.npmjs.org/ci-info/-/ci-info-2.0.0.tgz"
   integrity sha512-5tK7EtrZ0N+OLFMthtqOj4fI2Jeb88C4CAZPu25LDVUgXJ0A3Js4PMGqrn0JU1W0Mh1/Z8wZzYPxqUrXeBboCQ==
 
-ci-info@^4.0.0:
-  version "4.4.0"
-  resolved "https://registry.yarnpkg.com/ci-info/-/ci-info-4.4.0.tgz#7d54eff9f54b45b62401c26032696eb59c8bd18c"
-  integrity sha512-77PSwercCZU2Fc4sX94eF8k8Pxte6JAwL4/ICZLFjJLqegs7kCuAsqqj/70NQF6TvDpgFjkubQB2FW2ZZddvQg==
-
 clean-stack@^2.0.0:
   version "2.2.0"
   resolved "https://registry.npmjs.org/clean-stack/-/clean-stack-2.2.0.tgz"
@@ -3432,13 +3193,6 @@ cli-width@^3.0.0:
   resolved "https://registry.npmjs.org/cli-width/-/cli-width-3.0.0.tgz"
   integrity sha512-FxqpkPPwu1HjuN93Omfm4h8uIanXofW0RxVEW3k5RKx+mJJYSthzNhp32Kzxxy3YAEZ/Dc/EWN1vZRY0+kOhbw==
 
-clipanion@^4.0.0-rc.2:
-  version "4.0.0-rc.4"
-  resolved "https://registry.yarnpkg.com/clipanion/-/clipanion-4.0.0-rc.4.tgz#7191a940e47ef197e5f18c9cbbe419278b5f5903"
-  integrity sha512-CXkMQxU6s9GklO/1f714dkKBMu1lopS1WFF0B8o4AxPykR1hpozxSiUZ5ZUeBjfPgCWqbcNOtZVFhB8Lkfp1+Q==
-  dependencies:
-    typanion "^3.8.0"
-
 cliui@^6.0.0:
   version "6.0.0"
   resolved "https://registry.npmjs.org/cliui/-/cliui-6.0.0.tgz"
@@ -3475,13 +3229,6 @@ clone-deep@^4.0.1:
     kind-of "^6.0.2"
     shallow-clone "^3.0.0"
 
-clone-response@^1.0.2:
-  version "1.0.3"
-  resolved "https://registry.yarnpkg.com/clone-response/-/clone-response-1.0.3.tgz#af2032aa47816399cf5f0a1d0db902f517abb8c3"
-  integrity sha512-ROoL94jJH2dUVML2Y/5PEDNaSHgeOdSDicUyS7izcF63G6sTc/FTjLub4b8Il9S8S0beOfYt0TaA5qvFK+w0wA==
-  dependencies:
-    mimic-response "^1.0.0"
-
 clone@^1.0.2:
   version "1.0.4"
   resolved "https://registry.npmjs.org/clone/-/clone-1.0.4.tgz"
@@ -3876,13 +3623,6 @@ decamelize@^1.1.0, decamelize@^1.2.0:
   resolved "https://registry.npmjs.org/decamelize/-/decamelize-1.2.0.tgz"
   integrity sha1-9lNNFRSCabIDUue+4m9QH5oZEpA=
 
-decompress-response@^6.0.0:
-  version "6.0.0"
-  resolved "https://registry.yarnpkg.com/decompress-response/-/decompress-response-6.0.0.tgz#ca387612ddb7e104bd16d85aab00d5ecf09c66fc"
-  integrity sha512-aW35yZM6Bb/4oJlZncMH2LCoZtJXTRxES17vE3hoRiowU2kWHaJKFkSBDnDR+cm9J+9QhXmREyIfv0pji9ejCQ==
-  dependencies:
-    mimic-response "^3.1.0"
-
 dedent@^0.7.0:
   version "0.7.0"
   resolved "https://registry.npmjs.org/dedent/-/dedent-0.7.0.tgz"
@@ -3912,11 +3652,6 @@ defaults@^1.0.3:
   dependencies:
     clone "^1.0.2"
 
-defer-to-connect@^2.0.0:
-  version "2.0.1"
-  resolved "https://registry.yarnpkg.com/defer-to-connect/-/defer-to-connect-2.0.1.tgz#8016bdb4143e4632b77a3449c6236277de520587"
-  integrity sha512-4tvttepXG1VaYGrRibk5EwJd1t4udunSOVMdLSAL6mId1ix438oPwPZMALY41FCijukO1L0twNcGsdzS7dHgDg==
-
 define-data-property@^1.0.1, define-data-property@^1.1.4:
   version "1.1.4"
   resolved "https://registry.npmjs.org/define-data-property/-/define-data-property-1.1.4.tgz"
@@ -3969,16 +3704,6 @@ depd@^1.1.2:
   resolved "https://registry.npmjs.org/depd/-/depd-1.1.2.tgz"
   integrity sha1-m81S4UwJd2PnSbJ0xDRu0uVgtak=
 
-dependency-path@^9.2.8:
-  version "9.2.8"
-  resolved "https://registry.yarnpkg.com/dependency-path/-/dependency-path-9.2.8.tgz#9fe05be8d69ad1943a2084e4d86f3063c4b50c01"
-  integrity sha512-S0OhIK7sIyAsph8hVH/LMCTDL3jozKtlrPx3dMQrlE2nAlXTquTT+AcOufphDMTQqLkfn4acvfiem9I1IWZ4jQ==
-  dependencies:
-    "@pnpm/crypto.base32-hash" "1.0.1"
-    "@pnpm/types" "8.9.0"
-    encode-registry "^3.0.0"
-    semver "^7.3.8"
-
 deprecation@^2.0.0, deprecation@^2.3.1:
   version "2.3.1"
   resolved "https://registry.npmjs.org/deprecation/-/deprecation-2.3.1.tgz"
@@ -4017,11 +3742,6 @@ diff-sequences@^29.4.3:
   resolved "https://registry.npmjs.org/diff-sequences/-/diff-sequences-29.4.3.tgz"
   integrity sha512-ofrBgwpPhCD85kMKtE9RYFFq6OC1A89oW2vvgWZNCwxrUpRUILopY7lsYyMDSjc8g6U6aiO0Qubg6r4Wgt5ZnA==
 
-diff@^5.1.0:
-  version "5.2.2"
-  resolved "https://registry.yarnpkg.com/diff/-/diff-5.2.2.tgz#0a4742797281d09cfa699b79ea32d27723623bad"
-  integrity sha512-vtcDfH3TOjP8UekytvnHH1o1P4FcUdt4eQ1Y+Abap1tk/OB2MWQvcwS2ClCd1zuIhc3JKOx6p3kod8Vfys3E+A==
-
 dir-glob@^3.0.1:
   version "3.0.1"
   resolved "https://registry.npmjs.org/dir-glob/-/dir-glob-3.0.1.tgz"
@@ -4067,11 +3787,6 @@ dot-prop@^6.0.1:
   dependencies:
     is-obj "^2.0.0"
 
-dotenv@^16.3.1:
-  version "16.6.1"
-  resolved "https://registry.yarnpkg.com/dotenv/-/dotenv-16.6.1.tgz#773f0e69527a8315c7285d5ee73c4459d20a8020"
-  integrity sha512-uBq4egWHTcTt33a72vpSG0z3HnPuIl6NqYcTrKEg2azoEyl2hpW0zqlxysq2pK9HlDIHyHyakeYaYnSAwd8bow==
-
 dotenv@~10.0.0:
   version "10.0.0"
   resolved "https://registry.npmjs.org/dotenv/-/dotenv-10.0.0.tgz"
@@ -4113,13 +3828,6 @@ emoji-regex@^8.0.0:
   resolved "https://registry.npmjs.org/emoji-regex/-/emoji-regex-8.0.0.tgz"
   integrity sha512-MSjYzcWNOA0ewAHpz0MxpYFvwg6yjy1NG3xteoqz644VCo/RPgnr1/GGt+ic3iJTzQ8Eu3TdM14SawnVUmGE6A==
 
-encode-registry@^3.0.0:
-  version "3.0.1"
-  resolved "https://registry.yarnpkg.com/encode-registry/-/encode-registry-3.0.1.tgz#cb925d0db14ce59b18882b62c67133721b0846d1"
-  integrity sha512-6qOwkl1g0fv0DN3Y3ggr2EaZXN71aoAqPp3p/pVaWSBSIo+YjLOWN61Fva43oVyQNPf7kgm8lkudzlzojwE2jw==
-  dependencies:
-    mem "^8.0.0"
-
 encodeurl@~1.0.2:
   version "1.0.2"
   resolved "https://registry.npmjs.org/encodeurl/-/encodeurl-1.0.2.tgz"
@@ -4319,11 +4027,6 @@ es-to-primitive@^1.2.1:
     is-date-object "^1.0.1"
     is-symbol "^1.0.2"
 
-es-toolkit@^1.39.7:
-  version "1.46.1"
-  resolved "https://registry.yarnpkg.com/es-toolkit/-/es-toolkit-1.46.1.tgz#38ca27191a98a867fc544b81cf1477a68947fb06"
-  integrity sha512-5eNtXOs3tbfxXOj04tjjseeWkRWaoCjdEI+96DgwzZoe6c9juL49pXlzAFTI72aWC9Y8p7168g6XIKjh7k6pyQ==
-
 es6-error@^4.0.1:
   version "4.1.1"
   resolved "https://registry.npmjs.org/es6-error/-/es6-error-4.1.1.tgz"
@@ -4590,13 +4293,6 @@ esutils@^2.0.2:
   resolved "https://registry.npmjs.org/esutils/-/esutils-2.0.3.tgz"
   integrity sha512-kVscqXk4OCp68SZ0dkgEKVi6/8ij300KBWTJq32P/dYeWTSwK41WyTxalN1eRmA5Z9UU/LX9D7FWSmV9SAYx6g==
 
-event-loop-spinner@^2.0.0, event-loop-spinner@^2.1.0:
-  version "2.3.2"
-  resolved "https://registry.yarnpkg.com/event-loop-spinner/-/event-loop-spinner-2.3.2.tgz#cbf92985dccf8ce52c8905b33b8ac909c33f5605"
-  integrity sha512-O078Lkxi/yZEPPifcizDOGUeK1OFOlPC6sfCCrx10odvqX3tEi9XLaIRt9cIl9TBFcPZzuMaXbJ0b+T6D2Tnjg==
-  dependencies:
-    tslib "^2.6.3"
-
 eventemitter3@^4.0.0, eventemitter3@^4.0.4:
   version "4.0.7"
   resolved "https://registry.npmjs.org/eventemitter3/-/eventemitter3-4.0.7.tgz"
@@ -4658,7 +4354,7 @@ fast-glob@3.2.7:
     merge2 "^1.3.0"
     micromatch "^4.0.4"
 
-fast-glob@^3.2.11, fast-glob@^3.2.2, fast-glob@^3.2.9:
+fast-glob@^3.2.11, fast-glob@^3.2.9:
   version "3.3.3"
   resolved "https://registry.npmjs.org/fast-glob/-/fast-glob-3.3.3.tgz"
   integrity sha512-7MptL8U0cqcFdzIzwOTHoilX9x5BrNqye7Z/LuC7kCMRio1EMSyqRK3BEAUD7sXRq4iT4AzTVuZdhgQ2TCvYLg==
@@ -5109,11 +4805,6 @@ glob-parent@^5.1.1, glob-parent@^5.1.2, glob-parent@~5.1.2:
   dependencies:
     is-glob "^4.0.1"
 
-glob-to-regexp@^0.4.1:
-  version "0.4.1"
-  resolved "https://registry.yarnpkg.com/glob-to-regexp/-/glob-to-regexp-0.4.1.tgz#c75297087c851b9a578bd217dd59a92f59fe546e"
-  integrity sha512-lkX1HJXwyMcprw/5YUZc2s7DrpAiHB21/V+E1rHUrVNokkvB6bqMzT0VfV6/86ZNabt1k14YOIaT7nDvOX3Iiw==
-
 glob@7.1.4:
   version "7.1.4"
   resolved "https://registry.npmjs.org/glob/-/glob-7.1.4.tgz"
@@ -5223,33 +4914,11 @@ gopd@^1.2.0:
   resolved "https://registry.npmjs.org/gopd/-/gopd-1.2.0.tgz"
   integrity sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==
 
-got@^11.7.0:
-  version "11.8.6"
-  resolved "https://registry.yarnpkg.com/got/-/got-11.8.6.tgz#276e827ead8772eddbcfc97170590b841823233a"
-  integrity sha512-6tfZ91bOr7bOXnK7PRDCGBLa1H4U080YHNaAQ2KsMGlLEzRbk44nsZF2E1IeRc3vtJHPVbKCYgdFbaGO2ljd8g==
-  dependencies:
-    "@sindresorhus/is" "^4.0.0"
-    "@szmarczak/http-timer" "^4.0.5"
-    "@types/cacheable-request" "^6.0.1"
-    "@types/responselike" "^1.0.0"
-    cacheable-lookup "^5.0.3"
-    cacheable-request "^7.0.2"
-    decompress-response "^6.0.0"
-    http2-wrapper "^1.0.0-beta.5.2"
-    lowercase-keys "^2.0.0"
-    p-cancelable "^2.0.0"
-    responselike "^2.0.0"
-
 graceful-fs@^4.1.11, graceful-fs@^4.1.15, graceful-fs@^4.1.2, graceful-fs@^4.1.6, graceful-fs@^4.2.0, graceful-fs@^4.2.6:
   version "4.2.9"
   resolved "https://registry.npmjs.org/graceful-fs/-/graceful-fs-4.2.9.tgz"
   integrity sha512-NtNxqUcXgpW2iMrfqSfR73Glt39K+BLwWsPs94yR63v45T0Wbej7eRmL5cWfwEgqXnmjQp3zaJTshdRW/qC2ZQ==
 
-grapheme-splitter@^1.0.4:
-  version "1.0.4"
-  resolved "https://registry.yarnpkg.com/grapheme-splitter/-/grapheme-splitter-1.0.4.tgz#9cf3a665c6247479896834af35cf1dbb4400767e"
-  integrity sha512-bzh50DW9kTPM00T8y4o8vQg89Di9oLJVLW/KaOGIXJWP/iqCN6WKYkbNOF04vFLJhwcpYUh9ydh/+5vpOqV4YQ==
-
 handlebars@^4.7.7:
   version "4.7.9"
   resolved "https://registry.yarnpkg.com/handlebars/-/handlebars-4.7.9.tgz#6f139082ab58dc4e5a0e51efe7db5ae890d56a0f"
@@ -5364,21 +5033,11 @@ hosted-git-info@^5.0.0:
   dependencies:
     lru-cache "^7.5.1"
 
-hpagent@^1.2.0:
-  version "1.2.0"
-  resolved "https://registry.yarnpkg.com/hpagent/-/hpagent-1.2.0.tgz#0ae417895430eb3770c03443456b8d90ca464903"
-  integrity sha512-A91dYTeIB6NoXG+PxTQpCCDDnfHsW9kc06Lvpu1TEe9gnd6ZFeiBoRO9JvzEv6xK7EX97/dUE8g/vBMTqTS3CA==
-
 html-escaper@^2.0.0:
   version "2.0.2"
   resolved "https://registry.npmjs.org/html-escaper/-/html-escaper-2.0.2.tgz"
   integrity sha512-H2iMtd0I4Mt5eYiapRdIDjp+XzelXQ0tFE4JS7YFwFevXXMmOp9myNrUvCg0D6ws8iqkRPBfKHgbwig1SmlLfg==
 
-http-cache-semantics@^4.0.0:
-  version "4.2.0"
-  resolved "https://registry.yarnpkg.com/http-cache-semantics/-/http-cache-semantics-4.2.0.tgz#205f4db64f8562b76a4ff9235aa5279839a09dd5"
-  integrity sha512-dTxcvPXqPvXBQpq5dUr6mEMJX4oIEFv6bwom3FDwKRDsuIjjJGANqhBuoAn9c1RQJIdAKav33ED65E2ys+87QQ==
-
 http-cache-semantics@^4.1.0:
   version "4.1.1"
   resolved "https://registry.npmjs.org/http-cache-semantics/-/http-cache-semantics-4.1.1.tgz"
@@ -5421,14 +5080,6 @@ http-proxy@^1.18.1:
     follow-redirects "^1.0.0"
     requires-port "^1.0.0"
 
-http2-wrapper@^1.0.0-beta.5.2:
-  version "1.0.3"
-  resolved "https://registry.yarnpkg.com/http2-wrapper/-/http2-wrapper-1.0.3.tgz#b8f55e0c1f25d4ebd08b3b0c2c079f9590800b3d"
-  integrity sha512-V+23sDMr12Wnz7iTcDeJr3O6AIxlnvT/bmaAAAP/Xda35C90p9599p0F1eHR/N1KILWSoWVAiOMFjBBXaXSMxg==
-  dependencies:
-    quick-lru "^5.1.1"
-    resolve-alpn "^1.0.0"
-
 https-proxy-agent@^5.0.0:
   version "5.0.0"
   resolved "https://registry.npmjs.org/https-proxy-agent/-/https-proxy-agent-5.0.0.tgz"
@@ -6042,11 +5693,6 @@ jsesc@~0.5.0:
   resolved "https://registry.npmjs.org/jsesc/-/jsesc-0.5.0.tgz"
   integrity sha1-597mbjXW/Bb3EP6R1c9p9w8IkR0=
 
-json-buffer@3.0.1:
-  version "3.0.1"
-  resolved "https://registry.yarnpkg.com/json-buffer/-/json-buffer-3.0.1.tgz#9338802a30d3b6605fbe0613e094008ca8c05a13"
-  integrity sha512-4bV5BfR2mqfQTJm+V5tPPdf+ZpuhiIvTuAB5g8kcrXOZpTT/QwwVRWBywX1ozr6lEuPdbHxwaJlm9G6mI2sfSQ==
-
 json-parse-better-errors@^1.0.1:
   version "1.0.2"
   resolved "https://registry.npmjs.org/json-parse-better-errors/-/json-parse-better-errors-1.0.2.tgz"
@@ -6197,13 +5843,6 @@ karma@^6.0.2:
     ua-parser-js "^0.7.30"
     yargs "^16.1.1"
 
-keyv@^4.0.0:
-  version "4.5.4"
-  resolved "https://registry.yarnpkg.com/keyv/-/keyv-4.5.4.tgz#a879a99e29452f942439f2a405e3af8b31d4de93"
-  integrity sha512-oxVHkHR/EJf2CNXnWxRLW6mg7JyCCUcG0DtEGmL2ctUo1PNTin1PUil+r/+4r5MpVgC/fn1kjsx7mjSujKqIpw==
-  dependencies:
-    json-buffer "3.0.1"
-
 kind-of@^6.0.2, kind-of@^6.0.3:
   version "6.0.3"
   resolved "https://registry.npmjs.org/kind-of/-/kind-of-6.0.3.tgz"
@@ -6320,126 +5959,36 @@ lodash.camelcase@^4.3.0:
   resolved "https://registry.yarnpkg.com/lodash.camelcase/-/lodash.camelcase-4.3.0.tgz#b28aa6288a2b9fc651035c7711f65ab6190331a6"
   integrity sha512-TwuEnCnxbc3rAvhf/LbG7tJUDzhqXyFnv3dtzLOPgCG/hODL7WFnsbwktkD7yUV0RrreP/l1PALq/YSg6VvjlA==
 
-lodash.clone@^4.5.0:
-  version "4.5.0"
-  resolved "https://registry.yarnpkg.com/lodash.clone/-/lodash.clone-4.5.0.tgz#195870450f5a13192478df4bc3d23d2dea1907b6"
-  integrity sha512-GhrVeweiTD6uTmmn5hV/lzgCQhccwReIVRLHp7LT4SopOjqEZ5BbX8b5WWEtAKasjmy8hR7ZPwsYlxRCku5odg==
-
 lodash.clonedeep@^4.5.0:
   version "4.5.0"
   resolved "https://registry.npmjs.org/lodash.clonedeep/-/lodash.clonedeep-4.5.0.tgz"
   integrity sha1-4j8/nE+Pvd6HJSnBBxhXoIblzO8=
 
-lodash.constant@^3.0.0:
-  version "3.0.0"
-  resolved "https://registry.yarnpkg.com/lodash.constant/-/lodash.constant-3.0.0.tgz#bfe05cce7e515b3128925d6362138420bd624910"
-  integrity sha512-X5XMrB+SdI1mFa81162NSTo/YNd23SLdLOLzcXTwS4inDZ5YCL8X67UFzZJAH4CqIa6R8cr56CShfA5K5MFiYQ==
-
 lodash.debounce@^4.0.8:
   version "4.0.8"
   resolved "https://registry.npmjs.org/lodash.debounce/-/lodash.debounce-4.0.8.tgz"
   integrity sha1-gteb/zCmfEAF/9XiUVMArZyk168=
 
-lodash.filter@^4.6.0:
-  version "4.6.0"
-  resolved "https://registry.yarnpkg.com/lodash.filter/-/lodash.filter-4.6.0.tgz#668b1d4981603ae1cc5a6fa760143e480b4c4ace"
-  integrity sha512-pXYUy7PR8BCLwX5mgJ/aNtyOvuJTdZAo9EQFUvMIYugqmJxnrYaANvTbgndOzHSCSR0wnlBBfRXJL5SbWxo3FQ==
-
-lodash.flatmap@^4.5.0:
-  version "4.5.0"
-  resolved "https://registry.yarnpkg.com/lodash.flatmap/-/lodash.flatmap-4.5.0.tgz#ef8cbf408f6e48268663345305c6acc0b778702e"
-  integrity sha512-/OcpcAGWlrZyoHGeHh3cAoa6nGdX6QYtmzNP84Jqol6UEQQ2gIaU3H+0eICcjcKGl0/XF8LWOujNn9lffsnaOg==
-
 lodash.flattendeep@^4.4.0:
   version "4.4.0"
   resolved "https://registry.npmjs.org/lodash.flattendeep/-/lodash.flattendeep-4.4.0.tgz"
   integrity sha1-+wMJF/hqMTTlvJvsDWngAT3f7bI=
 
-lodash.foreach@^4.5.0:
-  version "4.5.0"
-  resolved "https://registry.yarnpkg.com/lodash.foreach/-/lodash.foreach-4.5.0.tgz#1a6a35eace401280c7f06dddec35165ab27e3e53"
-  integrity sha512-aEXTF4d+m05rVOAUG3z4vZZ4xVexLKZGF0lIxuHZ1Hplpk/3B6Z1+/ICICYRLm7c41Z2xiejbkCkJoTlypoXhQ==
-
-lodash.has@^4.5.2:
-  version "4.5.2"
-  resolved "https://registry.yarnpkg.com/lodash.has/-/lodash.has-4.5.2.tgz#d19f4dc1095058cccbe2b0cdf4ee0fe4aa37c862"
-  integrity sha512-rnYUdIo6xRCJnQmbVFEwcxF144erlD+M3YcJUVesflU9paQaE8p+fJDcIQrlMYbxoANFL+AB9hZrzSBBk5PL+g==
-
-lodash.isempty@^4.4.0:
-  version "4.4.0"
-  resolved "https://registry.yarnpkg.com/lodash.isempty/-/lodash.isempty-4.4.0.tgz#6f86cbedd8be4ec987be9aaf33c9684db1b31e7e"
-  integrity sha512-oKMuF3xEeqDltrGMfDxAPGIVMSSRv8tbRSODbrs4KGsRRLEhrW8N8Rd4DRgB2+621hY8A8XwwrTVhXWpxFvMzg==
-
-lodash.isequal@^4.5.0:
-  version "4.5.0"
-  resolved "https://registry.yarnpkg.com/lodash.isequal/-/lodash.isequal-4.5.0.tgz#415c4478f2bcc30120c22ce10ed3226f7d3e18e0"
-  integrity sha512-pDo3lu8Jhfjqls6GkMgpahsF9kCyayhgykjyLMNFTKWrpVdAQtYyB4muAMWozBB4ig/dtWAmsMxLEI8wuz+DYQ==
-
-lodash.isfunction@^3.0.9:
-  version "3.0.9"
-  resolved "https://registry.yarnpkg.com/lodash.isfunction/-/lodash.isfunction-3.0.9.tgz#06de25df4db327ac931981d1bdb067e5af68d051"
-  integrity sha512-AirXNj15uRIMMPihnkInB4i3NHeb4iBtNg9WRWuK2o31S+ePwwNmDPaTL3o7dTJ+VXNZim7rFs4rxN4YU1oUJw==
-
 lodash.ismatch@^4.4.0:
   version "4.4.0"
   resolved "https://registry.npmjs.org/lodash.ismatch/-/lodash.ismatch-4.4.0.tgz"
   integrity sha1-dWy1FQyjum8RCFp4hJZF8Yj4Xzc=
 
-lodash.isundefined@^3.0.1:
-  version "3.0.1"
-  resolved "https://registry.yarnpkg.com/lodash.isundefined/-/lodash.isundefined-3.0.1.tgz#23ef3d9535565203a66cefd5b830f848911afb48"
-  integrity sha512-MXB1is3s899/cD8jheYYE2V9qTHwKvt+npCwpD+1Sxm3Q3cECXCiYHjeHWXNwr6Q0SOBPrYUDxendrO6goVTEA==
-
-lodash.keys@^4.2.0:
-  version "4.2.0"
-  resolved "https://registry.yarnpkg.com/lodash.keys/-/lodash.keys-4.2.0.tgz#a08602ac12e4fb83f91fc1fb7a360a4d9ba35205"
-  integrity sha512-J79MkJcp7Df5mizHiVNpjoHXLi4HLjh9VLS/M7lQSGoQ+0oQ+lWEigREkqKyizPB1IawvQLLKY8mzEcm1tkyxQ==
-
-lodash.map@^4.6.0:
-  version "4.6.0"
-  resolved "https://registry.yarnpkg.com/lodash.map/-/lodash.map-4.6.0.tgz#771ec7839e3473d9c4cde28b19394c3562f4f6d3"
-  integrity sha512-worNHGKLDetmcEYDvh2stPCrrQRkP20E4l0iIS7F8EvzMqBBi7ltvFN5m1HvTf1P7Jk1txKhvFcmYsCr8O2F1Q==
-
 lodash.merge@^4.6.2:
   version "4.6.2"
   resolved "https://registry.npmjs.org/lodash.merge/-/lodash.merge-4.6.2.tgz"
   integrity sha512-0KpjqXRVvrYyCsX1swR/XTK0va6VQkQM6MNo7PqW77ByjAhoARA8EfrP1N4+KlKj8YS0ZUCtRT/YUuhyYDujIQ==
 
-lodash.reduce@^4.6.0:
-  version "4.6.0"
-  resolved "https://registry.yarnpkg.com/lodash.reduce/-/lodash.reduce-4.6.0.tgz#f1ab6b839299ad48f784abbf476596f03b914d3b"
-  integrity sha512-6raRe2vxCYBhpBu+B+TtNGUzah+hQjVdu3E17wfusjyrXBka2nBS8OH/gjVZ5PvHOhWmIZTYri09Z6n/QfnNMw==
-
-lodash.size@^4.2.0:
-  version "4.2.0"
-  resolved "https://registry.yarnpkg.com/lodash.size/-/lodash.size-4.2.0.tgz#71fe75ed3eabdb2bcb73a1b0b4f51c392ee27b86"
-  integrity sha512-wbu3SF1XC5ijqm0piNxw59yCbuUf2kaShumYBLWUrcCvwh6C8odz6SY/wGVzCWTQTFL/1Ygbvqg2eLtspUVVAQ==
-
-lodash.topairs@^4.3.0:
-  version "4.3.0"
-  resolved "https://registry.yarnpkg.com/lodash.topairs/-/lodash.topairs-4.3.0.tgz#3b6deaa37d60fb116713c46c5f17ea190ec48d64"
-  integrity sha512-qrRMbykBSEGdOgQLJJqVSdPWMD7Q+GJJ5jMRfQYb+LTLsw3tYVIabnCzRqTJb2WTo17PG5gNzXuFaZgYH/9SAQ==
-
-lodash.transform@^4.6.0:
-  version "4.6.0"
-  resolved "https://registry.yarnpkg.com/lodash.transform/-/lodash.transform-4.6.0.tgz#12306422f63324aed8483d3f38332b5f670547a0"
-  integrity sha512-LO37ZnhmBVx0GvOU/caQuipEh4GN82TcWv3yHlebGDgOxbxiwwzW5Pcx2AcvpIv2WmvmSMoC492yQFNhy/l/UQ==
-
 lodash.truncate@^4.4.2:
   version "4.4.2"
   resolved "https://registry.npmjs.org/lodash.truncate/-/lodash.truncate-4.4.2.tgz"
   integrity sha1-WjUNoLERO4N+z//VgSy+WNbq4ZM=
 
-lodash.union@^4.6.0:
-  version "4.6.0"
-  resolved "https://registry.yarnpkg.com/lodash.union/-/lodash.union-4.6.0.tgz#48bb5088409f16f1821666641c44dd1aaae3cd88"
-  integrity sha512-c4pB2CdGrGdjMKYLA+XiRDO7Y0PRQbm/Gzg8qMj+QH+pFVAoTp5sBpO0odL3FjoPCGjK96p6qsP+yQoiLoOBcw==
-
-lodash.values@^4.3.0:
-  version "4.3.0"
-  resolved "https://registry.yarnpkg.com/lodash.values/-/lodash.values-4.3.0.tgz#a3a6c2b0ebecc5c2cba1c17e6e620fe81b53d347"
-  integrity sha512-r0RwvdCv8id9TUblb/O7rYPwVy6lerCbcawrfdo9iC/1t1wsNMJknO79WNBgwkH0hIeJ08jmvvESbFpNb4jH0Q==
-
 lodash@^4.17.15, lodash@^4.17.21, lodash@~4.17.10:
   version "4.17.21"
   resolved "https://registry.npmjs.org/lodash/-/lodash-4.17.21.tgz"
@@ -6483,11 +6032,6 @@ long@^5.0.0:
   resolved "https://registry.yarnpkg.com/long/-/long-5.3.2.tgz#1d84463095999262d7d7b7f8bfd4a8cc55167f83"
   integrity sha512-mNAgZ1GmyNhD7AuqnTG3/VQ26o760+ZYBPKjPvugO8+nLbYfX6TVpJPseBvopbdY+qpZ/lKUnmEc1LeZYS3QAA==
 
-lowercase-keys@^2.0.0:
-  version "2.0.0"
-  resolved "https://registry.yarnpkg.com/lowercase-keys/-/lowercase-keys-2.0.0.tgz#2603e78b7b4b0006cbca2fbcc8a3202558ac9479"
-  integrity sha512-tqNXrS78oMOE73NMxK4EMLQsQowWf8jKooH9g7xPavRT706R6bkQJ6DY2Te7QukaZsulxa30wQ7bk0pm4XiHmA==
-
 lru-cache@^10.2.0:
   version "10.4.3"
   resolved "https://registry.npmjs.org/lru-cache/-/lru-cache-10.4.3.tgz"
@@ -6556,13 +6100,6 @@ make-fetch-happen@^10.0.3, make-fetch-happen@^10.0.6:
     socks-proxy-agent "^7.0.0"
     ssri "^9.0.0"
 
-map-age-cleaner@^0.1.3:
-  version "0.1.3"
-  resolved "https://registry.yarnpkg.com/map-age-cleaner/-/map-age-cleaner-0.1.3.tgz#7d583a7306434c055fe474b0f45078e6e1b4b92a"
-  integrity sha512-bJzx6nMoP6PDLPBFmg7+xRKeFZvFboMrGlxmNj9ClvX53KrmvM5bXFXEWjbz4cz1AFn+jWJ9z/DJSz7hrs0w3w==
-  dependencies:
-    p-defer "^1.0.0"
-
 map-obj@^1.0.0:
   version "1.0.1"
   resolved "https://registry.npmjs.org/map-obj/-/map-obj-1.0.1.tgz"
@@ -6583,14 +6120,6 @@ media-typer@0.3.0:
   resolved "https://registry.npmjs.org/media-typer/-/media-typer-0.3.0.tgz"
   integrity sha1-hxDXrwqmJvj/+hzgAWhUUmMlV0g=
 
-mem@^8.0.0:
-  version "8.1.1"
-  resolved "https://registry.yarnpkg.com/mem/-/mem-8.1.1.tgz#cf118b357c65ab7b7e0817bdf00c8062297c0122"
-  integrity sha512-qFCFUDs7U3b8mBDPyz5EToEKoAkgCzqquIgi9nkkR9bixxOVOre+09lbuH7+9Kn2NFpm56M3GUWVbU2hQgdACA==
-  dependencies:
-    map-age-cleaner "^0.1.3"
-    mimic-fn "^3.1.0"
-
 memfs@^3.4.0:
   version "3.4.12"
   resolved "https://registry.npmjs.org/memfs/-/memfs-3.4.12.tgz"
@@ -6643,7 +6172,7 @@ merge2@^1.3.0, merge2@^1.4.1:
   resolved "https://registry.npmjs.org/merge2/-/merge2-1.4.1.tgz"
   integrity sha512-8q7VEgMJW4J8tcfVPy8g09NcQwZdbwFEqhe/WZkoIzjn/3TGDwtOCYtXGxA3O8tPzpczCCDgv+P2P5y00ZJOOg==
 
-micromatch@^4.0.2, micromatch@^4.0.4, micromatch@^4.0.8:
+micromatch@^4.0.4, micromatch@^4.0.8:
   version "4.0.8"
   resolved "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz"
   integrity sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==
@@ -6673,21 +6202,6 @@ mimic-fn@^2.1.0:
   resolved "https://registry.npmjs.org/mimic-fn/-/mimic-fn-2.1.0.tgz"
   integrity sha512-OqbOk5oEQeAZ8WXWydlu9HJjz9WVdEIvamMCcXmuqUYjTknH/sqsWvhQ3vgwKFRR1HpjvNBKQ37nbJgYzGqGcg==
 
-mimic-fn@^3.1.0:
-  version "3.1.0"
-  resolved "https://registry.yarnpkg.com/mimic-fn/-/mimic-fn-3.1.0.tgz#65755145bbf3e36954b949c16450427451d5ca74"
-  integrity sha512-Ysbi9uYW9hFyfrThdDEQuykN4Ey6BuwPD2kpI5ES/nFTDn/98yxYNLZJcgUAKPT/mcrLLKaGzJR9YVxJrIdASQ==
-
-mimic-response@^1.0.0:
-  version "1.0.1"
-  resolved "https://registry.yarnpkg.com/mimic-response/-/mimic-response-1.0.1.tgz#4923538878eef42063cb8a3e3b0798781487ab1b"
-  integrity sha512-j5EctnkH7amfV/q5Hgmoal1g2QHFJRraOtmx0JpIqkxhBhI/lJSl1nMpQ45hVarwNETOoWEimndZ4QK0RHxuxQ==
-
-mimic-response@^3.1.0:
-  version "3.1.0"
-  resolved "https://registry.yarnpkg.com/mimic-response/-/mimic-response-3.1.0.tgz#2d1d59af9c1b129815accc2c46a022a5ce1fa3c9"
-  integrity sha512-z0yWI+4FDrrweS8Zmt4Ej5HdJmky15+L2e6Wgn3+iK5fWzb6T3fhNFq2+MeTRb064c6Wr4N/wv0DzQTjNzHNGQ==
-
 min-indent@^1.0.0:
   version "1.0.1"
   resolved "https://registry.npmjs.org/min-indent/-/min-indent-1.0.1.tgz"
@@ -6818,11 +6332,6 @@ minipass@^5.0.0:
   resolved "https://registry.npmjs.org/minipass/-/minipass-7.1.2.tgz"
   integrity sha512-qOOzS1cBTWYF4BH8fVePDBOO9iptMnGUEZwNc/cMWnTV2nVLZ7VoNWEPHkYczZA0pdoA7dl6e7FL659nX9S2aw==
 
-minipass@^7.0.4, minipass@^7.1.2:
-  version "7.1.3"
-  resolved "https://registry.yarnpkg.com/minipass/-/minipass-7.1.3.tgz#79389b4eb1bb2d003a9bba87d492f2bd37bdc65b"
-  integrity sha512-tEBHqDnIoM/1rXME1zgka9g6Q2lcoCkxHLuc7ODJ5BxbP5d4c2Z5cGgtXAku59200Cx7diuHTOYfSBD8n6mm8A==
-
 minizlib@^2.1.1, minizlib@^2.1.2:
   version "2.1.2"
   resolved "https://registry.npmjs.org/minizlib/-/minizlib-2.1.2.tgz"
@@ -6831,13 +6340,6 @@ minizlib@^2.1.1, minizlib@^2.1.2:
     minipass "^3.0.0"
     yallist "^4.0.0"
 
-minizlib@^3.1.0:
-  version "3.1.0"
-  resolved "https://registry.yarnpkg.com/minizlib/-/minizlib-3.1.0.tgz#6ad76c3a8f10227c9b51d1c9ac8e30b27f5a251c"
-  integrity sha512-KZxYo1BUkWD2TVFLr0MQoM8vUUigWD3LlD83a/75BqC+4qE0Hb1Vo5v1FgcfaNXvfXzr+5EhQ6ing/CaBijTlw==
-  dependencies:
-    minipass "^7.1.2"
-
 mkdirp-infer-owner@^2.0.0:
   version "2.0.0"
   resolved "https://registry.npmjs.org/mkdirp-infer-owner/-/mkdirp-infer-owner-2.0.0.tgz"
@@ -7007,11 +6509,6 @@ normalize-path@^3.0.0, normalize-path@~3.0.0:
   resolved "https://registry.npmjs.org/normalize-path/-/normalize-path-3.0.0.tgz"
   integrity sha512-6eZs5Ls3WtCisHWp9S2GUy8dqkpGi4BVSz3GaqiE6ezub0512ESztXUwUB6C6IKbQkY2Pnb/mD4WYojCRwcwLA==
 
-normalize-url@^6.0.1:
-  version "6.1.0"
-  resolved "https://registry.yarnpkg.com/normalize-url/-/normalize-url-6.1.0.tgz#40d0885b535deffe3f3147bec877d05fe4c5668a"
-  integrity sha512-DlL+XwOy3NxAQ8xuC0okPgK46iuVNAK01YN7RueYBqqFeGsBjV9XmCAzAdgt+667bCl5kPh9EqKKDwnaPG1I7A==
-
 npm-bundled@^1.1.1:
   version "1.1.1"
   resolved "https://registry.npmjs.org/npm-bundled/-/npm-bundled-1.1.1.tgz"
@@ -7199,11 +6696,6 @@ object-assign@^4:
   resolved "https://registry.npmjs.org/object-assign/-/object-assign-4.1.1.tgz"
   integrity sha1-IQmtx5ZYh8/AXLvUQsrIv7s2CGM=
 
-object-hash@^3.0.0:
-  version "3.0.0"
-  resolved "https://registry.yarnpkg.com/object-hash/-/object-hash-3.0.0.tgz#73f97f753e7baffc0e2cc9d6e079079744ac82e9"
-  integrity sha512-RSn9F68PjH9HqtltsSnqYC1XXoWe9Bju5+213R98cNGttag9q9yAOTzdbsqvIa7aNm5WffBZFpWYr2aWrklWAw==
-
 object-inspect@^1.13.1, object-inspect@^1.9.0:
   version "1.13.1"
   resolved "https://registry.npmjs.org/object-inspect/-/object-inspect-1.13.1.tgz"
@@ -7321,16 +6813,6 @@ os-tmpdir@~1.0.2:
   resolved "https://registry.npmjs.org/os-tmpdir/-/os-tmpdir-1.0.2.tgz"
   integrity sha1-u+Z0BseaqFxc/sdm/lc0VV36EnQ=
 
-p-cancelable@^2.0.0:
-  version "2.1.1"
-  resolved "https://registry.yarnpkg.com/p-cancelable/-/p-cancelable-2.1.1.tgz#aab7fbd416582fa32a3db49859c122487c5ed2cf"
-  integrity sha512-BZOr3nRQHOntUjTrH8+Lh54smKHoHyur8We1V8DSMVrl5A2malOOwuJRnKRDjSnkoeBh4at6BwEnb5I7Jl31wg==
-
-p-defer@^1.0.0:
-  version "1.0.0"
-  resolved "https://registry.yarnpkg.com/p-defer/-/p-defer-1.0.0.tgz#9f6eb182f6c9aa8cd743004a7d4f96b196b0fb0c"
-  integrity sha512-wB3wfAxZpk2AzOfUMJNL+d36xothRSyj8EXOa4f6GMqYDN9BJaaSISbsk+wS9abmnebVw95C2Kb5t85UmpCxuw==
-
 p-finally@^1.0.0:
   version "1.0.0"
   resolved "https://registry.npmjs.org/p-finally/-/p-finally-1.0.0.tgz"
@@ -7464,11 +6946,6 @@ package-hash@^4.0.0:
     lodash.flattendeep "^4.4.0"
     release-zalgo "^1.0.0"
 
-packageurl-js@2.0.1:
-  version "2.0.1"
-  resolved "https://registry.yarnpkg.com/packageurl-js/-/packageurl-js-2.0.1.tgz#a8fa43a64971b5dd0dca5fb904b950a6cc317a6f"
-  integrity sha512-N5ixXjzTy4QDQH0Q9YFjqIWd6zH6936Djpl2m9QNFmDv5Fum8q8BjkpAcHNMzOFE0IwQrFhJWex3AN6kS0OSwg==
-
 pacote@^13.0.3, pacote@^13.6.1:
   version "13.6.1"
   resolved "https://registry.npmjs.org/pacote/-/pacote-13.6.1.tgz"
@@ -7828,11 +7305,6 @@ quick-lru@^4.0.1:
   resolved "https://registry.npmjs.org/quick-lru/-/quick-lru-4.0.1.tgz"
   integrity sha512-ARhCpm70fzdcvNQfPoy49IaanKkTlRWF2JMzqhcJbhSFRZv7nPTvZJdcY7301IPmvW+/p0RgIWnQDLJxifsQ7g==
 
-quick-lru@^5.1.1:
-  version "5.1.1"
-  resolved "https://registry.yarnpkg.com/quick-lru/-/quick-lru-5.1.1.tgz#366493e6b3e42a3a6885e2e99d18f80fb7a8c932"
-  integrity sha512-WuyALRjWPDGtt/wzJiadO5AXY+8hZ80hVpe6MyivgraREW751X3SbhRvG3eLKOYN+8VEvqLcf3wdnt44Z4S4SA==
-
 range-parser@^1.2.1:
   version "1.2.1"
   resolved "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz"
@@ -8056,11 +7528,6 @@ reselect@^4.1.7:
   resolved "https://registry.npmjs.org/reselect/-/reselect-4.1.8.tgz"
   integrity sha512-ab9EmR80F/zQTMNeneUr4cv+jSwPJgIlvEmVwLerwrWVbpLlBuls9XHzIeTFy4cegU2NHBp3va0LKOzU5qFEYQ==
 
-resolve-alpn@^1.0.0:
-  version "1.2.1"
-  resolved "https://registry.yarnpkg.com/resolve-alpn/-/resolve-alpn-1.2.1.tgz#b7adbdac3546aaaec20b45e7d8265927072726f9"
-  integrity sha512-0a1F4l73/ZFZOakJnQ3FvkJ2+gSTQWz/r2KE5OdDY0TxPm5h4GkqkWWfM47T7HsbnOtcJVEF4epCVy6u7Q3K+g==
-
 resolve-cwd@^3.0.0:
   version "3.0.0"
   resolved "https://registry.npmjs.org/resolve-cwd/-/resolve-cwd-3.0.0.tgz"
@@ -8087,13 +7554,6 @@ resolve@^1.10.0, resolve@^1.10.1, resolve@^1.14.2, resolve@^1.17.0, resolve@^1.2
     path-parse "^1.0.7"
     supports-preserve-symlinks-flag "^1.0.0"
 
-responselike@^2.0.0:
-  version "2.0.1"
-  resolved "https://registry.yarnpkg.com/responselike/-/responselike-2.0.1.tgz#9a0bc8fdc252f3fb1cca68b016591059ba1422bc"
-  integrity sha512-4gl03wn3hj1HP3yzgdI7d3lCkF95F21Pz4BPGvKHinyQzALR5CapwC8yIi0Rh58DEMQ/SguC03wFj2k0M/mHhw==
-  dependencies:
-    lowercase-keys "^2.0.0"
-
 restore-cursor@^3.1.0:
   version "3.1.0"
   resolved "https://registry.npmjs.org/restore-cursor/-/restore-cursor-3.1.0.tgz"
@@ -8112,11 +7572,6 @@ reusify@^1.0.4:
   resolved "https://registry.npmjs.org/reusify/-/reusify-1.0.4.tgz"
   integrity sha512-U9nH88a3fc/ekCF1l0/UP1IosiuIjyTh7hBvXVMHYgVcfGvt897Xguj2UOLDeI5BG2m7/uwyaLVT6fbtCwTyzw==
 
-rfc4648@^1.5.1:
-  version "1.5.4"
-  resolved "https://registry.yarnpkg.com/rfc4648/-/rfc4648-1.5.4.tgz#1174c0afba72423a0b70c386ecfeb80aa61b05ca"
-  integrity sha512-rRg/6Lb+IGfJqO05HZkN50UtY7K/JhxJag1kP23+zyMfrvoB0B7RWv06MbOzoc79RgCdNTiUaNsTT1AJZ7Z+cg==
-
 rfdc@^1.3.0:
   version "1.3.0"
   resolved "https://registry.npmjs.org/rfdc/-/rfdc-1.3.0.tgz"
@@ -8211,11 +7666,6 @@ semver@^7.0.0, semver@^7.1.1, semver@^7.2.1, semver@^7.3.2, semver@^7.3.4, semve
   resolved "https://registry.npmjs.org/semver/-/semver-7.6.3.tgz"
   integrity sha512-oVekP1cKtI+CTDvHWYFUcMtsK/00wmAEfyqKfNdARm8u1wNVhSgaX7A8d4UuIlUI5e84iEwOhs7ZPYRmzU9U6A==
 
-semver@^7.1.2, semver@^7.3.8, semver@^7.6.0:
-  version "7.8.0"
-  resolved "https://registry.yarnpkg.com/semver/-/semver-7.8.0.tgz#ed0661039fcbcda2ce71f01fa6adbefaa77040df"
-  integrity sha512-AcM7dV/5ul4EekoQ29Agm5vri8JNqRyj39o0qpX6vDF2GZrtutZl5RwgD1XnZjiTAfncsJhMI48QQH3sN87YNA==
-
 set-blocking@^2.0.0:
   version "2.0.0"
   resolved "https://registry.npmjs.org/set-blocking/-/set-blocking-2.0.0.tgz"
@@ -8320,40 +7770,6 @@ smart-buffer@^4.2.0:
   resolved "https://registry.npmjs.org/smart-buffer/-/smart-buffer-4.2.0.tgz"
   integrity sha512-94hK0Hh8rPqQl2xXc3HsaBoOXKV20MToPkcXvwbISWLEs+64sBq5kFgn2kJDHb1Pry9yrP0dxrCI9RRci7RXKg==
 
-snyk-config@^5.2.0:
-  version "5.3.0"
-  resolved "https://registry.yarnpkg.com/snyk-config/-/snyk-config-5.3.0.tgz#5ea906ad1c9c6151dd87c4e523c1d9659f5cf0e3"
-  integrity sha512-YPxhYZXBXgnYdvovwlKf5JYcOp+nxB7lel3tWLarYqZ4hwxN118FodIFb8nSqMrepsPdyOaQYKKnrTYqvQeaJA==
-  dependencies:
-    async "^3.2.2"
-    debug "^4.3.4"
-    lodash.merge "^4.6.2"
-    minimist "^1.2.6"
-
-snyk-nodejs-lockfile-parser@2.7.1:
-  version "2.7.1"
-  resolved "https://registry.yarnpkg.com/snyk-nodejs-lockfile-parser/-/snyk-nodejs-lockfile-parser-2.7.1.tgz#e175501c9691f70c6a32b590956e680ce0c0048b"
-  integrity sha512-ViG434ZhiWXRtAEXVS2yjkHKz6Yk1lj9FxyMYWjRDZN/VplvrTGhkI/6BISgKotkR9h+QPsmVHiwWdoeVoqRog==
-  dependencies:
-    "@snyk/dep-graph" "^2.12.0"
-    "@snyk/error-catalog-nodejs-public" "^5.16.0"
-    "@snyk/graphlib" "2.1.9-patch.3"
-    "@yarnpkg/core" "^4.4.1"
-    "@yarnpkg/lockfile" "^1.1.0"
-    dependency-path "^9.2.8"
-    event-loop-spinner "^2.0.0"
-    js-yaml "^4.1.0"
-    lodash.clonedeep "^4.5.0"
-    lodash.flatmap "^4.5.0"
-    lodash.isempty "^4.4.0"
-    lodash.topairs "^4.3.0"
-    micromatch "^4.0.8"
-    p-map "^4.0.0"
-    semver "^7.6.0"
-    snyk-config "^5.2.0"
-    tslib "^1.9.3"
-    uuid "^8.3.0"
-
 socket.io-adapter@~2.5.2:
   version "2.5.5"
   resolved "https://registry.npmjs.org/socket.io-adapter/-/socket.io-adapter-2.5.5.tgz"
@@ -8528,18 +7944,6 @@ statuses@~1.5.0:
   resolved "https://registry.npmjs.org/statuses/-/statuses-1.5.0.tgz"
   integrity sha1-Fhx9rBd2Wf2YEfQ3cfqZOBR4Yow=
 
-stream-chain@^2.2.5:
-  version "2.2.5"
-  resolved "https://registry.yarnpkg.com/stream-chain/-/stream-chain-2.2.5.tgz#b30967e8f14ee033c5b9a19bbe8a2cba90ba0d09"
-  integrity sha512-1TJmBx6aSWqZ4tx7aTpBDXK0/e2hhcNSTV8+CbFJtDjbb+I1mZ8lHit0Grw9GRT+6JbIrrDd8esncgBi8aBXGA==
-
-stream-json@^1.8.0:
-  version "1.9.1"
-  resolved "https://registry.yarnpkg.com/stream-json/-/stream-json-1.9.1.tgz#e3fec03e984a503718946c170db7d74556c2a187"
-  integrity sha512-uWkjJ+2Nt/LO9Z/JyKZbMusL8Dkh97uUBTv3AJQ74y07lVahLY4eEFsPsE97pxYBwr8nnjMAIch5eqI0gPShyw==
-  dependencies:
-    stream-chain "^2.2.5"
-
 streamroller@^3.0.2:
   version "3.0.2"
   resolved "https://registry.npmjs.org/streamroller/-/streamroller-3.0.2.tgz"
@@ -8743,17 +8147,6 @@ tar@^6.1.0, tar@^6.1.11, tar@^6.1.2:
     mkdirp "^1.0.3"
     yallist "^4.0.0"
 
-tar@^7.5.3:
-  version "7.5.15"
-  resolved "https://registry.yarnpkg.com/tar/-/tar-7.5.15.tgz#afe6d1316cddf614a566e3813e42fe01aed46fee"
-  integrity sha512-dzGK0boVlC4W5QFuQN1EFSl3bIDYsk7Tj40U6eIBnK2k/8ml7TZ5agbI5j5+qnoVcAA+rNtBml8SEiLxZpNqRQ==
-  dependencies:
-    "@isaacs/fs-minipass" "^4.0.0"
-    chownr "^3.0.0"
-    minipass "^7.1.2"
-    minizlib "^3.1.0"
-    yallist "^5.0.0"
-
 temp-dir@^1.0.0:
   version "1.0.0"
   resolved "https://registry.npmjs.org/temp-dir/-/temp-dir-1.0.0.tgz"
@@ -8798,11 +8191,6 @@ through@2, "through@>=2.2.7 <3", through@^2.3.4, through@^2.3.6:
   resolved "https://registry.npmjs.org/through/-/through-2.3.8.tgz"
   integrity sha1-DdTJ/6q8NXlgsbckEV1+Doai4fU=
 
-tinylogic@^2.0.0:
-  version "2.0.0"
-  resolved "https://registry.yarnpkg.com/tinylogic/-/tinylogic-2.0.0.tgz#0d2409c492b54c0663082ac1e3f16be64497bb47"
-  integrity sha512-dljTkiLLITtsjqBvTA1MRZQK/sGP4kI3UJKc3yA9fMzYbMF2RhcN04SeROVqJBIYYOoJMM8u0WDnhFwMSFQotw==
-
 tmp@^0.0.33:
   version "0.0.33"
   resolved "https://registry.npmjs.org/tmp/-/tmp-0.0.33.tgz"
@@ -8839,11 +8227,6 @@ tr46@~0.0.3:
   resolved "https://registry.npmjs.org/tr46/-/tr46-0.0.3.tgz"
   integrity sha1-gYT9NH2snNwYWZLzpmIuFLnZq2o=
 
-treeify@^1.1.0:
-  version "1.1.0"
-  resolved "https://registry.yarnpkg.com/treeify/-/treeify-1.1.0.tgz#4e31c6a463accd0943879f30667c4fdaff411bb8"
-  integrity sha512-1m4RA7xVAJrSGrrXGs0L3YTwyvBs2S8PbRHaLZAkFw7JR8oIFwYtysxlBZhYIa7xSyiYJKZ3iGrrk55cGA3i9A==
-
 treeverse@^2.0.0:
   version "2.0.0"
   resolved "https://registry.npmjs.org/treeverse/-/treeverse-2.0.0.tgz"
@@ -8882,21 +8265,11 @@ tsd@^0.31.2:
     path-exists "^4.0.0"
     read-pkg-up "^7.0.0"
 
-tslib@^1.9.3:
-  version "1.14.1"
-  resolved "https://registry.yarnpkg.com/tslib/-/tslib-1.14.1.tgz#cf2d38bdc34a134bcaf1091c41f6619e2f672d00"
-  integrity sha512-Xni35NKzjgMrwevysHTCArtLDpPvye8zV/0E4EyYn43P7/7qvQwPh9BGkHewbMulVntbigmcT7rdX3BNo9wRJg==
-
-tslib@^2, tslib@^2.0.1, tslib@^2.1.0, tslib@^2.3.0, tslib@^2.4.0, tslib@^2.6.3, tslib@^2.8.1:
+tslib@^2.0.1, tslib@^2.1.0, tslib@^2.3.0, tslib@^2.4.0, tslib@^2.8.1:
   version "2.8.1"
   resolved "https://registry.npmjs.org/tslib/-/tslib-2.8.1.tgz"
   integrity sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==
 
-typanion@^3.8.0:
-  version "3.14.0"
-  resolved "https://registry.yarnpkg.com/typanion/-/typanion-3.14.0.tgz#a766a91810ce8258033975733e836c43a2929b94"
-  integrity sha512-ZW/lVMRabETuYCd9O9ZvMhAh8GslSqaUjxmK/JLPCh6l73CvLBiuXswj/+7LdnWOgYsQ130FqLzFz5aGT4I3Ug==
-
 type-check@^0.4.0, type-check@~0.4.0:
   version "0.4.0"
   resolved "https://registry.npmjs.org/type-check/-/type-check-0.4.0.tgz"
@@ -9110,17 +8483,12 @@ utils-merge@1.0.1:
   resolved "https://registry.npmjs.org/utils-merge/-/utils-merge-1.0.1.tgz"
   integrity sha1-n5VxD1CiZ5R7LMwSR0HBAoQn5xM=
 
-uuid@^11.1.0:
-  version "11.1.1"
-  resolved "https://registry.yarnpkg.com/uuid/-/uuid-11.1.1.tgz#f6d81d2e1c65d00762e5e29b16c5d2d995e208ad"
-  integrity sha512-vIYxrBCC/N/K+Js3qSN88go7kIfNPssr/hHCesKCQNAjmgvYS2oqr69kIufEG+O4+PfezOH4EbIeHCfFov8ZgQ==
-
 uuid@^3.3.3:
   version "3.4.0"
   resolved "https://registry.npmjs.org/uuid/-/uuid-3.4.0.tgz"
   integrity sha512-HjSDRw6gZE5JMggctHBcjVak08+KEVhSIiDzFnT9S9aegmp85S/bReBVTb4QTFaRNptJ9kuYaNhnbNEOkbKb/A==
 
-uuid@^8.3.0, uuid@^8.3.2:
+uuid@^8.3.2:
   version "8.3.2"
   resolved "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz"
   integrity sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==
@@ -9375,11 +8743,6 @@ yallist@^4.0.0:
   resolved "https://registry.npmjs.org/yallist/-/yallist-4.0.0.tgz"
   integrity sha512-3wdGidZyq5PB084XLES5TpOSRA3wjXAlIWMhum2kRcv/41Sn2emQ0dycQW4uZXLejwKvg6EsvbdlVL+FYEct7A==
 
-yallist@^5.0.0:
-  version "5.0.0"
-  resolved "https://registry.yarnpkg.com/yallist/-/yallist-5.0.0.tgz#00e2de443639ed0d78fd87de0d27469fbcffb533"
-  integrity sha512-YgvUTfwqyc7UXVMrB+SImsVYSmTS8X/tSrtdNZMImM+n7+QTriRXyXim0mBrTXNeqzVF0KWGgHPeiyViFFrNDw==
-
 yaml@^1.10.0:
   version "1.10.2"
   resolved "https://registry.npmjs.org/yaml/-/yaml-1.10.2.tgz"