Patch release for mitre-mcp. Adds repeatable npm publishing with audit and package payload checks. Updates dependency locks so full npm audit is clean. Keeps existing attack and mitre-mcp entrypoints intact.