chore(deps): update graphql (#2566)

This PR contains the following updates:

| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
|
[@apollo/server](https://redirect.github.com/apollographql/apollo-server)
([source](https://redirect.github.com/apollographql/apollo-server/tree/HEAD/packages/server))
| [`4.11.0` ->
`4.11.2`](https://renovatebot.com/diffs/npm/@apollo%2fserver/4.11.0/4.11.2)
|
[![age](https://developer.mend.io/api/mc/badges/age/npm/@apollo%2fserver/4.11.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/@apollo%2fserver/4.11.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/@apollo%2fserver/4.11.0/4.11.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@apollo%2fserver/4.11.0/4.11.2?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
|
[@graphql-tools/merge](https://redirect.github.com/ardatan/graphql-tools)
([source](https://redirect.github.com/ardatan/graphql-tools/tree/HEAD/packages/merge))
| [`9.0.7` ->
`9.0.8`](https://renovatebot.com/diffs/npm/@graphql-tools%2fmerge/9.0.7/9.0.8)
|
[![age](https://developer.mend.io/api/mc/badges/age/npm/@graphql-tools%2fmerge/9.0.8?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/@graphql-tools%2fmerge/9.0.8?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/@graphql-tools%2fmerge/9.0.7/9.0.8?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@graphql-tools%2fmerge/9.0.7/9.0.8?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
|
[@graphql-tools/schema](https://redirect.github.com/ardatan/graphql-tools)
([source](https://redirect.github.com/ardatan/graphql-tools/tree/HEAD/packages/schema))
| [`10.0.6` ->
`10.0.7`](https://renovatebot.com/diffs/npm/@graphql-tools%2fschema/10.0.6/10.0.7)
|
[![age](https://developer.mend.io/api/mc/badges/age/npm/@graphql-tools%2fschema/10.0.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/@graphql-tools%2fschema/10.0.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/@graphql-tools%2fschema/10.0.6/10.0.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@graphql-tools%2fschema/10.0.6/10.0.7?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
|
[@graphql-tools/utils](https://redirect.github.com/ardatan/graphql-tools)
([source](https://redirect.github.com/ardatan/graphql-tools/tree/HEAD/packages/utils))
| [`10.5.4` ->
`10.5.5`](https://renovatebot.com/diffs/npm/@graphql-tools%2futils/10.5.4/10.5.5)
|
[![age](https://developer.mend.io/api/mc/badges/age/npm/@graphql-tools%2futils/10.5.5?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![adoption](https://developer.mend.io/api/mc/badges/adoption/npm/@graphql-tools%2futils/10.5.5?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![passing](https://developer.mend.io/api/mc/badges/compatibility/npm/@graphql-tools%2futils/10.5.4/10.5.5?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|
[![confidence](https://developer.mend.io/api/mc/badges/confidence/npm/@graphql-tools%2futils/10.5.4/10.5.5?slim=true)](https://docs.renovatebot.com/merge-confidence/)
|

---

### Release Notes

<details>
<summary>apollographql/apollo-server (@&#8203;apollo/server)</summary>

###
[`v4.11.2`](https://redirect.github.com/apollographql/apollo-server/blob/HEAD/packages/server/CHANGELOG.md#4112)

[Compare
Source](https://redirect.github.com/apollographql/apollo-server/compare/@apollo/[email protected]...@apollo/[email protected])

(No change; there is a change to the
`@apollo/server-integration-testsuite` used to test integrations, and
the two packages always have matching versions.)

###
[`v4.11.1`](https://redirect.github.com/apollographql/apollo-server/blob/HEAD/packages/server/CHANGELOG.md#4111)

[Compare
Source](https://redirect.github.com/apollographql/apollo-server/compare/@apollo/[email protected]...@apollo/[email protected])

##### Patch Changes

-
[#&#8203;7952](https://redirect.github.com/apollographql/apollo-server/pull/7952)
[`bb81b2c`](https://redirect.github.com/apollographql/apollo-server/commit/bb81b2c6b794dcd98fea9d01e4e38c6450287f53)
Thanks [@&#8203;glasser](https://redirect.github.com/glasser)! - Upgrade
dependencies so that automated scans don't detect a vulnerability.

`@apollo/server` depends on `express` which depends on `cookie`.
Versions of `express` older than v4.21.1 depend on a version of `cookie`
vulnerable to CVE-2024-47764. Users of older `express` versions who call
`res.cookie()` or `res.clearCookie()` may be vulnerable to this issue.

However, Apollo Server does not call this function directly, and it does
not expose any object to user code that allows TypeScript users to call
this function without an unsafe cast.

The only way that this direct dependency can cause a vulnerability for
users of Apollo Server is if you call `startStandaloneServer` with a
context function that calls Express-specific methods such as
`res.cookie()` or `res.clearCookies()` on the response object, which is
a violation of the TypeScript types provided by `startStandaloneServer`
(which only promise that the response object is a core Node.js
`http.ServerResponse` rather than the Express-specific subclass). So
this vulnerability can only affect Apollo Server users who use unsafe
JavaScript or unsafe `as` typecasts in TypeScript.

However, this upgrade will at least prevent vulnerability scanners from
alerting you to this dependency, and we encourage all Express users to
upgrade their project's own `express` dependency to v4.21.1 or newer.

</details>

<details>
<summary>ardatan/graphql-tools (@&#8203;graphql-tools/merge)</summary>

###
[`v9.0.8`](https://redirect.github.com/ardatan/graphql-tools/blob/HEAD/packages/merge/CHANGELOG.md#908)

[Compare
Source](https://redirect.github.com/ardatan/graphql-tools/compare/@graphql-tools/[email protected]...@graphql-tools/[email protected])

##### Patch Changes

-   Updated dependencies

\[[`cf2ce5e`](https://redirect.github.com/ardatan/graphql-tools/commit/cf2ce5ed4773087cc324599f2812f4fb91398b21)]:
-
[@&#8203;graphql-tools/utils](https://redirect.github.com/graphql-tools/utils)[@&#8203;10](https://redirect.github.com/10).5.5

</details>

<details>
<summary>ardatan/graphql-tools (@&#8203;graphql-tools/schema)</summary>

###
[`v10.0.7`](https://redirect.github.com/ardatan/graphql-tools/blob/HEAD/packages/schema/CHANGELOG.md#1007)

[Compare
Source](https://redirect.github.com/ardatan/graphql-tools/compare/@graphql-tools/[email protected]...@graphql-tools/[email protected])

##### Patch Changes

-   Updated dependencies

\[[`cf2ce5e`](https://redirect.github.com/ardatan/graphql-tools/commit/cf2ce5ed4773087cc324599f2812f4fb91398b21)]:
-
[@&#8203;graphql-tools/utils](https://redirect.github.com/graphql-tools/utils)[@&#8203;10](https://redirect.github.com/10).5.5
-
[@&#8203;graphql-tools/merge](https://redirect.github.com/graphql-tools/merge)[@&#8203;9](https://redirect.github.com/9).0.8

</details>

<details>
<summary>ardatan/graphql-tools (@&#8203;graphql-tools/utils)</summary>

###
[`v10.5.5`](https://redirect.github.com/ardatan/graphql-tools/blob/HEAD/packages/utils/CHANGELOG.md#1055)

[Compare
Source](https://redirect.github.com/ardatan/graphql-tools/compare/@graphql-tools/[email protected]...@graphql-tools/[email protected])

##### Patch Changes

-
[#&#8203;6524](https://redirect.github.com/ardatan/graphql-tools/pull/6524)

[`cf2ce5e`](https://redirect.github.com/ardatan/graphql-tools/commit/cf2ce5ed4773087cc324599f2812f4fb91398b21)
Thanks [@&#8203;kachkaev](https://redirect.github.com/kachkaev)! - Make
two types compatible with strict tsc
    config

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "on the 2nd through 5th day of the
month" (UTC), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Enabled.

♻ **Rebasing**: Whenever PR is behind base branch, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/JabRef/JabRefOnline).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC4xMzUuMiIsInVwZGF0ZWRJblZlciI6IjM4LjEzNS4yIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>

Author: renovate[bot]

package.json

@@ -44,10 +44,10 @@
   },
   "dependencies": {
     "@apollo/client": "3.11.8",
-    "@apollo/server": "4.11.0",
+    "@apollo/server": "4.11.2",
     "@as-integrations/h3": "1.2.1",
     "@azure/communication-email": "1.0.0",
-    "@graphql-tools/schema": "10.0.6",
+    "@graphql-tools/schema": "10.0.7",
     "@he-tree/vue": "2.8.7",
     "@nuxtjs/tailwindcss": "6.12.1",
     "@pinia/nuxt": "0.5.3",
@@ -93,8 +93,8 @@
     "@graphql-codegen/typescript-operations": "4.2.3",
     "@graphql-eslint/eslint-plugin": "3.20.1",
     "@graphql-inspector/cli": "5.0.6",
-    "@graphql-tools/merge": "9.0.7",
-    "@graphql-tools/utils": "10.5.4",
+    "@graphql-tools/merge": "9.0.8",
+    "@graphql-tools/utils": "10.5.5",
     "@graphql-typed-document-node/core": "3.2.0",
     "@nuxt/content": "2.13.2",
     "@nuxt/kit": "3.12.4",