chore(deps): bump uuid, qs, js-yaml, and @cypress/request in frontend lockfiles

[rusackas]

SUMMARY

Resolves several transitive npm security advisories in the frontend dev/test tooling, surfaced by Dependabot, via package.json overrides. Grouped because they all live in the two frontend lockfiles.

superset-frontend/

pkg	before	after	notes
uuid	8.3.2 / 9.0.1 (nested)	14.x	unified to the root version via "uuid": "$uuid"

The nested uuid copies are under storybook, jest-junit, istanbul-lib-processinfo, and sockjs. Each imports the named API ({ v4 }, { v1 }, .v4), which is unchanged from uuid 7 onward, so the major bump is API-compatible for these consumers.

superset-frontend/cypress-base/ (deprecated, Cypress→Playwright migration)

pkg	before	after	notes
uuid	3.4.0 / 8.3.2	11.1.1	global override
qs	6.10.4	6.15.2	clears the moderate and low advisory
@cypress/request	2.88.12	3.0.10
js-yaml	4.1.0	4.1.1	scoped under @cypress/code-coverage; the 3.x used by eslint is left untouched

NOTES

• Lockfiles were regenerated with npm install --package-lock-only (minimal, incremental diffs). Verified that cypress (11.2.0), eslint (7.32.0), and @cypress/code-coverage (3.10.4) versions are unchanged.
• A full sweep confirms no remaining vulnerable instances of these four packages in either lockfile.

TESTING INSTRUCTIONS

• npm install --package-lock-only resolves cleanly for both lockfiles
• Verified consuming code uses uuid's named exports (compatible with the bump)
• CI green (jest / build / cypress exercise runtime)

ADDITIONAL INFORMATION

• Has associated issue: n/a
• Required feature flags: n/a
• Changes UI: No
• Includes DB Migration: No
• Introduces new feature or API: No
• Removes existing feature or API: No

🤖 Generated with Claude Code

[bito-code-review]

Bito Automatic Review Skipped - Files Excluded

Bito didn't auto-review this change because all changed files are in the exclusion list for automatic reviews. No action is needed if you didn't intend for the agent to review it. Otherwise, to manually trigger a review, type /review in a comment and save.
You can change the excluded files settings here, or contact your Bito workspace admin at evan@preset.io.

[github-actions]

Congrats on making your first PR and thank you for contributing to Superset! 🎉 ❤️

Please read our New Contributor Welcome & Expectations guide.

We hope to see you in our Slack community too! Not signed up? Use our Slack App to self-register.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 64.02%. Comparing base (7e8b8e2) to head (04ff5dc).

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #40561      +/-   ##
==========================================
- Coverage   64.02%   64.02%   -0.01%     
==========================================
  Files        2648     2648              
  Lines      142277   142272       -5     
  Branches    32695    32693       -2     
==========================================
- Hits        91092    91088       -4     
+ Misses      49627    49626       -1     
  Partials     1558     1558              

Flag	Coverage Δ
javascript	67.37% <ø> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.