fix(test): upgrade assertj-core to 3.27.7 to address vulnerability

[pwgit-create]

---

🛡️ Security Fix: Upgrade AssertJ to Safe Version

What’s changed

This PR addresses a reported security vulnerability by upgrading AssertJ used in test scope:

• Overrides transitive dependency org.assertj:assertj-core
• Upgrades from 3.27.6 → 3.27.7 (non-vulnerable version)

The upgrade is applied via dependency management to ensure the safe version is consistently used across the test classpath.

Why

• assertj-core:3.27.6 is flagged with a known vulnerability
• 3.27.7 contains the upstream fix
• No production code impact (test-scope only)

Verification

• Confirmed via mvn dependency:tree that only assertj-core:3.27.7 is resolved
• No behavior or API changes expected in existing tests

Risk

🟢 Low — version bump within the same minor release, test-only dependency.

---

The assertj-bom:3.25.3 download you see is normal — Maven sometimes pulls BOM metadata, but your actual resolved artifact is still assertj-core:3.27.7

[lilstiffy]

Great find!