Security/fix UI vulnerabilities issue 4

[swar00pduthks]

Problem

This PR addresses security vulnerabilities identified in GitHub issue #4. The web UI dependencies contained 7 critical CVEs that needed to be resolved:

• CVE-2024-21536 - http-proxy-middleware vulnerable to denial of service
• CVE-2024-4067 - micromatch Regular Expression Denial of Service (ReDoS)
• CVE-2024-45590 - body-parser denial of service vulnerability
• CVE-2025-27789 - @babel/runtime and @babel/helpers prototype pollution
• CVE-2024-55565 - nanoid predictable IDs (already mitigated in current version)
• CVE-2021-3803 - nth-check inefficient regular expression complexity

Additionally, the project had missing peer dependencies that prevented successful builds.

Closes: #3040

Solution

Security Updates:

• Updated http-proxy-middleware from 2.0.6 to 3.0.3
• Updated micromatch to 4.0.8 via npm overrides
• Updated body-parser to 1.20.3 via npm overrides
• Updated @babel/runtime and @babel/helpers to 7.26.0 via npm overrides
• Added overrides for 8 additional high-severity vulnerabilities: form-data, @remix-run/router, cross-spawn, node-forge, path-to-regexp, qs, rollup, send

Build Fixes:

• Added missing peer dependencies: @chakra-ui/react@^2, history@^5, framer-motion@^10
• Fixed keyframes import in graph components to use @emotion/react instead of @chakra-ui/react
• Installed graph workspace dependencies

Results:

• Reduced total vulnerabilities from 38 to 30 (8 vulnerabilities resolved)
• All 7 CVEs from issue Update pkg and job ownership field #4 are now resolved
• Build passes successfully with 0 errors (only compatibility warnings remain)

One-line summary:
fix: resolve security vulnerabilities in UI dependencies (CVEs: 2024-21536, 2024-4067, 2024-45590, 2025-27789)

Checklist

• You've signed-off your work
• Your changes are accompanied by tests (if relevant) - N/A: dependency updates only
• Your change contains a small diff and is self-contained
• You've updated any relevant documentation (if relevant) - N/A: no documentation changes needed
• You've included a one-line summary of your change for the CHANGELOG.md
• You've versioned your .sql database schema migration according to Flyway's naming convention - N/A: no database changes
• You've included a header in any source code files (if relevant) - N/A: only modified imports

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 81.18%. Comparing base (a89b89c) to head (9eb38d6).

Additional details and impacted files

@@            Coverage Diff            @@
##               main    #3089   +/-   ##
=========================================
  Coverage     81.18%   81.18%           
  Complexity     1506     1506           
=========================================
  Files           268      268           
  Lines          7356     7356           
  Branches        325      325           
=========================================
  Hits           5972     5972           
  Misses         1226     1226           
  Partials        158      158           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.