fix: markdown syntax highlighting

[alex-mcgovern]

Fixes a long-standing bug with Syntax highlighting in markdown.

This should also allow us to allow @danbarr to document functionality (e.g. certificates) in plain markdown, rather than the current solution, which is limiting.

As an added bonus, the syntax theme is now based on colors from our palette, so should feel more consistent with the rest of the application, and respects the user's dark/light preference.

Before

After

[stacklok-cloud-staging]

Minder Vulnerability Report ⚠️

Minder found vulnerable dependencies in this PR. Either push an updated version or accept the proposed changes. Note that accepting the changes will include Minder as a co-author of this PR.

Vulnerability scan of a0b80822:

• 🐞 vulnerable packages: 1
• 🛠 fixes available for: 1

Package	Version	#Vulnerabilities	#Fixes	Patch
trim	0.0.1	1	1	0.0.3

Summary of vulnerabilities found

Minder found the following vulnerabilities in this PR:

Ecosystem	Name	Version	Vulnerability ID	Summary	Introduced	Fixed
npm	trim	0.0.1	GHSA-w5p7-h5w8-2hfq	Regular Expression Denial of Service in trim	0	0.0.3

[coveralls]

Pull Request Test Coverage Report for Build 13328529376

Details

• 3 of 12 (25.0%) changed or added relevant lines in 1 file are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage decreased (-0.6%) to 67.926%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
src/components/Markdown.tsx	3	12	25.0%

Totals
Change from base Build 13328521386:	-0.6%
Covered Lines:	771
Relevant Lines:	1067

---

💛 - Coveralls

Not sure what minder is suggesting or if it will break things.

Previous Minder review was dismissed because the PR was updated

n/a

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: attach-ware

⚠️ Archived Package: This package is marked as deprecated. Proceed with caution!

Archived packages are no longer updated or maintained. This can lead to security vulnerabilities and compatibility issues.

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	3.9
Repository activity	1.2
User activity	6.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1
Number of git tags or releases	3
Versions matched to tags or releases	1

Alternatives

Package	Description
connect
express

📦 Dependency: hast

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	5.7
Repository activity	3.6
User activity	7.9
Provenance	unknown

Alternatives

Package	Description
rehype

📦 Dependency: lower-case

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	6.5
Repository activity	4.6
User activity	8.4
Provenance	historical_provenance_mismatched

📦 Dependency: param-case

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	6.5
Repository activity	4.6
User activity	8.4
Provenance	unknown

📦 Dependency: sentence-case

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Provenance	unknown

Alternatives

Package	Description
title-case
to-title-case

📦 Dependency: trim

⚠️ Archived Package: This package is marked as deprecated. Proceed with caution!

Archived packages are no longer updated or maintained. This can lead to security vulnerabilities and compatibility issues.

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	5.2
Repository activity	1.3
User activity	9
Provenance	unknown

Alternatives

Package	Description
lodash.trim
string.prototype.trim
trim-whitespace

Previous Minder review was dismissed because the PR was updated

[stacklok-cloud-staging]

Suggested change

	"version": "0.0.1",
	"resolved": "https://registry.npmjs.org/trim/-/trim-0.0.1.tgz",
	"integrity": "sha512-YzQV+TZg4AxpKxaTHK3c3D+kRDCGVEE7LemdlQZoQXn0iennk10RsIoY6ikzAqJTc9Xjl9C1/waHom/J86ziAQ==",
	"deprecated": "Use String.prototype.trim() instead",
	"dev": true
	},
	"node_modules/trim": {
	"version": "0.0.1",
	0.0.1
	"version": "0.0.3",
	"resolved": "https://registry.npmjs.org/trim/-/trim-0.0.3.tgz",
	"integrity": "sha512-h82ywcYhHK7veeelXrCScdH7HkWfbIT1D/CgYO+nmDarz3SGNssVBMws6jU16Ga60AJCRAvPV6w6RLuNerQqjg==",

[stacklok-cloud-staging]

Dependency Information

Minder analyzed the dependencies introduced in this pull request and detected that some dependencies do not meet your security profile.

📦 Dependency: attach-ware

⚠️ Archived Package: This package is marked as deprecated. Proceed with caution!

Archived packages are no longer updated or maintained. This can lead to security vulnerabilities and compatibility issues.

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	3.9
Repository activity	1.2
User activity	6.6
Provenance	historical_provenance_match

Proof of Origin (Provenance)

This package can be linked back to its source code using a historical provenance map.

We were able to correlate a significant number of git tags and tagged releases in this package’s source code to versions of the published package. This mapping creates a strong link from the package back to its source code repository, verifying proof of origin.

Published package versions	1
Number of git tags or releases	3
Versions matched to tags or releases	1

Alternatives

Package	Description
connect
express

📦 Dependency: hast

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	5.7
Repository activity	3.6
User activity	7.9
Provenance	unknown

Alternatives

Package	Description
rehype

📦 Dependency: lower-case

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	6.5
Repository activity	4.6
User activity	8.4
Provenance	historical_provenance_mismatched

📦 Dependency: param-case

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	6.5
Repository activity	4.6
User activity	8.4
Provenance	unknown

📦 Dependency: sentence-case

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Provenance	unknown

Alternatives

Package	Description
title-case
to-title-case

📦 Dependency: trim

⚠️ Archived Package: This package is marked as deprecated. Proceed with caution!

Archived packages are no longer updated or maintained. This can lead to security vulnerabilities and compatibility issues.

⚠️ Deprecated Package: This package is marked as archived. Proceed with caution!

Scoring details

Component	Score
Package activity	5.2
Repository activity	1.3
User activity	9
Provenance	unknown

Alternatives

Package	Description
lodash.trim
string.prototype.trim
trim-whitespace

n/a