SDK-405 Bump version to 2.2.2 and pin axios to v1.14.0

[joaodordio]

JIRA Ticket

• SDK-405
• SDK-404

Description

axios 1.14.1 was published via a hijacked npm account and included a RAT. Versions <=1.13.4 are vulnerable to a DoS via prototype pollution in mergeConfig. This pins all three package.json files to the safe 1.14.0 release and adds a yarn resolutions block as an additional safeguard.

Test Steps

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 74.45%. Comparing base (e38d2dc) to head (bd0baeb).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #554   +/-   ##
=======================================
  Coverage   74.45%   74.45%           
=======================================
  Files          57       57           
  Lines        2736     2736           
  Branches      815      798   -17     
=======================================
  Hits         2037     2037           
- Misses        658      698   +40     
+ Partials       41        1   -40     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.