chore: Harden pnpm configuration

[milosh86]

Description

Hardens the pnpm workspace configuration based on recommendations from the pnpm supply chain security newsroom article.

Two settings added to pnpm-workspace.yaml:

• strictDepBuilds: true — prevents packages from running install scripts unless explicitly allowed
• trustPolicy: no-downgrade — prevents packages from being installed with a lower trust level than currently configured

Type of Change

• Patch: Enhancement (non-breaking change to an existing feature)

Developer Checklist:

• Manually smoke tested the functionality in a preview or locally
• Confirmed there are no new warnings or errors in the browser console
• Confirmed there are no new warnings on automated tests
• Selected the correct base branch
• Followed the code style guidelines of this project
• Reviewed that the Files Changed in Github's UI reflect my intended changes
• Confirmed the pipeline checks are not failing

Review Checklist:

• Confirmed that changes follow the code style guidelines of this project

[github-actions]

🚀 Preview Deployment: View Here

[github-actions]

E2E Smoke Results

Base URL	https://app-next-ebd77zad3-aragon-app.vercel.app
Suite	smoke
Playwright result	✅ passed
Summary	44 passed
GitHub job	✅ completed
Run	#3983