Remove @conventional-changelog/git-client override when git-semver-tags releases a fix

[TomerFi]

Context

git-semver-tags@8.0.0 depends on @conventional-changelog/git-client@^1.0.0, which resolves to 1.0.1 — vulnerable to argument injection (CVE-2025-59433, GHSA-vh25-5764-9wcr).

Since no patched version of git-semver-tags is available, we added an npm override forcing @conventional-changelog/git-client@^2.0.0 for git-semver-tags.

Action

Once git-semver-tags releases a version that depends on @conventional-changelog/git-client@^2.0.0 natively, remove the override from package.json.

[coderabbitai]

🔗 Related PRs

#391 - fix: override yargs to v18 for Node 25 compatibility [closed]

---

📝 Issue Planner

_{Check the box below or use the @coderabbitai plan command to generate an implementation plan and prompts that you can use with your favorite coding assistant.}

• Create Plan

---

🧪 Issue enrichment is currently in open beta.

You can configure auto-planning by selecting labels in the issue_enrichment configuration.

To disable automatic issue enrichment, add the following to your .coderabbit.yaml:

issue_enrichment:
  auto_enrich:
    enabled: false

💬 Have feedback or questions? Drop into our discord!

[TomerFi]

Override added in #394.