chore: fix dependabot alerts

[rchincha]

What type of PR is this?

Which issue does this PR fix:

What does this PR do / Why do we need it:

If an issue # is not available please add repro steps and logs showing the issue:

Testing done on this change:

Automation added to e2e:

Will this break upgrades or downgrades?

Does this PR introduce any user-facing change?:

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 91.93%. Comparing base (5e30fec) to head (7e61fe9).
Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #2810   +/-   ##
=======================================
  Coverage   91.93%   91.93%           
=======================================
  Files         170      170           
  Lines       30126    30126           
=======================================
  Hits        27697    27697           
  Misses       1806     1806           
  Partials      623      623           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[andaaron]

From: https://github.com/project-zot/zot/actions/runs/12044291709/artifacts/2242993433

### [ Vulnerable JS Library ](https://www.zaproxy.org/docs/alerts/10003/)



##### Informational (Medium)

### Description

The identified library react-dom, version 17.0. is vulnerable.

* URL: http://localhost:8080/static/js/main.087291d5.js
  * Method: `GET`
  * Parameter: ``
  * Attack: ``
  * Evidence: `version:"17.0.2",rendererPackageName:"react-dom"`
  * Other Info: ``

Instances: 1

### Solution

Please upgrade to the latest version of react-dom.

### Reference



#### CWE Id: [ 829 ](https://cwe.mitre.org/data/definitions/829.html)


#### Source ID: 3