Bump the npm_and_yarn group across 1 directory with 2 updates

[dependabot]

Bumps the npm_and_yarn group with 2 updates in the / directory: storybook and minimatch.

Updates storybook from 10.2.6 to 10.3.5

Changelog

Sourced from storybook's changelog.

10.3.5

• Core: Disable component manifest by default - #34408, thanks @​yannbf!

[!NOTE] Version >=0.5.0 of @storybook/addon-mcp enables component manifests again. If you're upgrading Storybook from version >= 10.3.0 to >= 10.3.5 and are using the MCP addon, you should also upgrade @storybook/addon-mcp to keep the docs toolset in the MCP server.

10.3.4

• Addon-a11y: Clear status transition timer on unmount to prevent test flake - #34203, thanks @​mixelburg!
• Bug: Skip re-processing already transformed config files for CSF factories - #34273, thanks @​huang-julien!
• Builder-Vite: Use djb2 hash to prevent variable name collisions in builder-vite - #34274, thanks @​chida09!
• CLI: Prompt for init crash reports - #34316, thanks @​JReinhold!
• CSF4: Fix duplicate preview loading issue in Vitest - #34361, thanks @​valentinpalkovic!
• Core: Fix WebSocket connection for StackBlitz/WebContainers - #34281, thanks @​ghengeveld!
• React-Docgen: Try .tsx fallback when resolving .js ESM imports in docgen resolvers - #34393, thanks @​mixelburg!
• React-Vite: Upgrade @​joshwooding/vite-plugin-react-docgen-typescript to 0.7.0 - #34335, thanks @​beeswhacks!

10.3.3

• Addon-Vitest: Streamline vite(st) config detection across init and postinstall - #34193, thanks @​valentinpalkovic!

10.3.2

• CLI: Shorten CTA link messages - #34236, thanks @​shilman!
• React Native Web: Fix vite8 support by bumping vite-plugin-rnw - #34231, thanks @​dannyhw!

10.3.1

• CLI: Use npm info to fetch versions in repro command - #34214, thanks @​yannbf!
• Core: Prevent story-local viewport from persisting in URL - #34153, thanks @​ghengeveld!

10.3.0

> Improved developer experience, AI-assisting tools, and broader ecosystem support

Storybook 10.3 contains hundreds of fixes and improvements including:

• 🤖 Storybook MCP: Agentic component dev, docs, and test (Preview release for React)
• ⚡ Vite 8 support
• ▲ Next.js 16.2 support
• 📝 ESLint 10 support
• 〰️ Addon Pseudo-States: Tailwind v4 support
• 🔧 Addon-Vitest: Simplified configuration - no more setup files required
• ♿ Numerous accessibility improvements across the UI

... (truncated)

Commits

• e486d38 Bump version from "10.3.4" to "10.3.5" [skip ci]
• 0b3ac65 Merge pull request #34408 from storybookjs/yann/disable-component-manifest-de...
• ee73b65 Merge pull request #34455 from seojcarlos/fix/remove-duplicate-words
• 4eff9cd Bump version from "10.3.3" to "10.3.4" [skip ci]
• 21d37fd Merge pull request #34224 from storybookjs/chore/removeprettierrc
• 4eb227b Build: Move prettier to oxfmt
• ff9d121 Merge pull request #34316 from storybookjs/jeppe/fix-error-reports-on-init
• 5bc8686 Merge pull request #34281 from storybookjs/fix-stackblitz-websocket
• b0acfb4 Bump version from "10.3.2" to "10.3.3" [skip ci]
• 6a398c5 Merge pull request #34193 from storybookjs/valentin/streamline-config-validat...
• Additional commits viewable in compare view

Updates minimatch from 3.1.2 to 3.1.5

Commits

• 7bba978 3.1.5
• bd25942 docs: add warning about ReDoS
• 1a9c27c fix partial matching of globstar patterns
• 1a2e084 3.1.4
• ae24656 update lockfile
• b100374 limit recursion for **, improve perf considerably
• 26ffeaa lockfile update
• 9eca892 lock node version to 14
• 00c323b 3.1.3
• 30486b2 update CI matrix and actions
• Additional commits viewable in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

[alistairjcbrown]

@dependabot recreate