deps: [M3-8782] - Patch cookie version

[jaalah-akamai]

Description 📝

See: https://github.com/linode/manager/security/dependabot/131

• cookie is being used by msw (Mock Service Worker) through @bundled-es-modules
• cookie is also being used by express which stems from @storybook/react-vite and @storybook/builder-vite

Changes 🔄

• Add cookie resolution pinning to > 0.7.0

Target release date 🗓️

01/14/2025

How to test 🧪

Reproduction steps

• Run yarn why cookie to observe dependencies and versions found in yarn.lock
• Observe:

=> Found "cookie@0.5.0" info Reasons this module exists    - "_project_#linode-manager#msw#@bundled-es-modules#cookie" depends on it
=> Found "express#cookie@0.6.0" info This module exists because "_project_#linode-manager#@storybook#react-vite#@storybook#builder-vite#express" depends on it.

Verification steps

• Run same commands
• Observe:

=> Found "cookie@0.7.2"
info Reasons this module exists
   - "_project_#linode-manager#msw#@bundled-es-modules#cookie" depends on it
   - Hoisted from "_project_#linode-manager#msw#@bundled-es-modules#cookie#cookie"
   - Hoisted from "_project_#linode-manager#@storybook#react-vite#@storybook#builder-vite#express#cookie"

• Run yarn storybook and observe it still works
• Run Cloud Manager app and observe there's no issues
  Hoisted just means that it was moved up in the dependency tree for deduplication

Author Checklists

As an Author, to speed up the review process, I considered 🤔

👀 Doing a self review
❔ Our contribution guidelines
🤏 Splitting feature into small PRs
➕ Adding a changeset
🧪 Providing/improving test coverage
🔐 Removing all sensitive information from the code and PR description
🚩 Using a feature flag to protect the release
👣 Providing comprehensive reproduction steps
📑 Providing or updating our documentation
🕛 Scheduling a pair reviewing session
📱 Providing mobile support
♿ Providing accessibility support

• I have read and considered all applicable items listed above.

As an Author, before moving this PR from Draft to Open, I confirmed ✅

• All unit tests are passing
• TypeScript compilation succeeded without errors
• Code passes all linting rules

[github-actions]

Coverage Report: ✅
Base Coverage: 86.95%
Current Coverage: 86.95%

[bnussman-akamai]

Thanks for looking into this one, looks good! Can you run yarn install and push to update the lockfile

[mjac0bs]

Approving pending Banks' comment so my pending review doesn't block this PR.

✅ Storybook runs as expected
✅ Cloud Manager runs as expected, no issues with MSW
✅ package.json version resolution is non-vulnerable

[github-actions]

This PR is stale because it has been open 15 days with no activity. Please attend to this PR or it will be closed in 5 days

[jaalah-akamai]

@bnussman-akamai done ✅

[bnussman-akamai]

Sweet, thanks!

[linode-gh-bot]

Cloud Manager UI test results

🔺 1 failing test on test run #3 ↗︎

❌ Failing	✅ Passing	↪️ Skipped	🕐 Duration
1 Failing	468 Passing	2 Skipped	93m 25s

Details

Failing Tests
	Spec	Test
❌	lke-update.spec.ts	LKE cluster updates » can add and delete node pool tags

Troubleshooting

Use this command to re-run the failing tests:

yarn cy:run -s "cypress/e2e/core/kubernetes/lke-update.spec.ts"