Bump lit-analyzer and add fastglob (#2450)

fastglob will add a vulnerability.
The vulnerability would be prevented if overrides were honored
But currently, there is an npm bug and `npm ci` will be broken.
More details in #2449

Since it only affects the build tools, it's a low risk vulnerability.

package.json

@@ -76,7 +76,7 @@
     "gulp-uglify-es": "^3.0.0",
     "ini": ">=3.0.1",
     "kind-of": ">=6.0.3",
-    "lit-analyzer": "^0.0.6",
+    "lit-analyzer": "^1.2.1",
     "lodash": ">=4.17.21",
     "lodash.template": ">=4.5.0",
     "minimist": ">=1.2.7",