Security: Improve environment variable expansion regex

### Environment

No environment needed.

### Reproduction

1. Check `/\{\{(.*?)\}\}/g` at [`/packages/kit/src/runtime-config.ts`](https://github.com/nuxt/nuxt/blob/2b8527e741fc79c4c464123a0cbce91540f381b4/packages/kit/src/runtime-config.ts#L97).
2. Go to [`Devina`](https://devina.io/redos-checker), select `ReDoS checker` and paste current regular expression.

<details>
<summary>Devina screenshot</summary>

![Image](https://github.com/user-attachments/assets/8e1a8806-7ff5-4761-95ca-c87ff1ba33a4)

</details>

Note:
Same result on [ReDoS Detector](https://redosdetector.com/).

### Describe the bug

Just consider to replace current value, example `/\{\{([^{}]*)\}\}/g` - is safe on `Devina` but not safe on `ReDoS Detector`.

### Additional context

- Low priority - current usage context is safe
- No direct user input exposure
- Only runs during config initialization

### Logs

```shell-script

```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Security: Improve environment variable expansion regex #30263

Environment

Reproduction

Describe the bug

Additional context

Logs

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Security: Improve environment variable expansion regex #30263

Description

Environment

Reproduction

Describe the bug

Additional context

Logs

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions