build(deps): bump flatted from 3.3.3 to 3.4.1

[dependabot]

Bumps flatted from 3.3.3 to 3.4.1.

Commits

• 2a02dce 3.4.1
• fba4e8f Merge pull request #89 from WebReflection/python-fix
• 5fe8648 added "when in Rome" also a test for PHP
• 53517ad some minor improvement
• b3e2a0c Fixing recursion issue in Python too
• c4b46db Add SECURITY.md for security policy and reporting
• f86d071 Create dependabot.yml for version updates
• d3418c7 3.4.0
• 7eb65d8 Merge pull request #88 from WebReflection/avoid-recusrion
• 7774aae Avoid recursion on parse due possible shenanigans
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[github-actions]

@dependabot merge

[codacy-production]

Codacy's Analysis Summary

0 new issue (≤ 1 medium issue)
0 new security issue (≤ 0 issue)
0 complexity
0 duplications
More details

AI Reviewer: first review requested successfully. AI can make mistakes. Always validate suggestions.

_{TIP This summary will be updated as you push new changes. Give us feedback}

[codacy-production]

Pull Request Overview

The pull request updates the 'flatted' dependency in the lockfile but fails to update the package.json manifest. This inconsistency between the manifest and the lockfile should be resolved to ensure reproducible builds across different environments.

While the project remains up to Codacy standards, the update introduces metadata churn in package-lock.json by removing the license field, suggesting the use of an inconsistent npm environment during the update. This should be corrected to avoid unnecessary diffs in future PRs.

About this PR

• The package.json file is missing from this PR. Dependency updates must include both the manifest and the lockfile to ensure the project environment remains consistent and reproducible.

Test suggestions

• Verify that JSON serialization and deserialization involving circular references (handled by flatted) continues to work as expected.

Prompt proposal for missing tests

Consider implementing these tests if applicable:
1. Verify that JSON serialization and deserialization involving circular references (handled by flatted) continues to work as expected.

---

🗒️ Improve review quality by adding custom instructions

[codacy-production]

_{⚪ LOW RISK}

Nitpick: The license field was removed from this entry. This metadata is standard in npm 7+ lockfiles, and its absence will likely cause automated churn in future PRs as standard npm commands re-add it. Try running the following prompt in your coding agent: > Run npm install flatted@3.4.1 to regenerate the lockfile with all standard metadata.