fix(rules): correct webui dev rules

internal/route/rules/presets/webui_dev.yml

@@ -3,14 +3,16 @@
   do: pass
 - name: protected
   on: |
-    !path glob("@tanstack-start/*")
+    !path glob("/@tanstack-start/*")
+    !path glob("/@vite-plugin-pwa/*")
+    !path glob("/__tsd/*")
     !path /@react-refresh
     !path /@vite/client
-    !path regex("\?token=\w{5}-\w{5}")
+    !path regex("/\?token=[a-zA-Z0-9-_]+")
     !path glob("/@id/*")
     !path glob("/api/v1/auth/*")
     !path glob("/auth/*")
-    !path regex("[A-Za-z0-9_\-/]+\.(css|ts|js|mjs|svg|png|jpg|jpeg|gif|ico|webp|woff2?|eot|ttf|otf|txt)(\?.+)?")
+    !path regex("([A-Za-z0-9_\-/]+)+\.(css|ts|js|mjs|svg|png|jpg|jpeg|gif|ico|webp|woff2?|eot|ttf|otf|txt)(\?.*)?")
     !path /api/v1/version
     !path /manifest.webmanifest
   do: require_auth