[TTAHUB-2958] Bump http-proxy-middleware to 3.0.7 to resolve high severity vulnerability

[kryswisnaskas]

Description of change

Upgrades http-proxy-middleware from 3.0.5 to 3.0.7 in the frontend to address a high-severity security vulnerability flagged by yarn audit. The package was a direct dependency and the fix was straightforward — no API changes are required.

How to test

Run the frontend audit check and confirm the vulnerability is no longer reported:

cd frontend && yarn audit --level high --groups dependencies

The http-proxy-middleware entry should no longer appear. Remaining issues should only be pre-existing known entries in yarn-audit-known-issues.

Jira Issue(s)

• https://jira.acf.gov/browse/TTAHUB-2958

Checklists

Every PR

• Linked Jira issue
• JIRA issue status updated
• [n/a] Code is meaningfully tested
• [n/a] Meets accessibility standards (WCAG 2.1 Levels A, AA)
• [n/a] API Documentation updated
• [n/a] Boundary diagram updated
• [n/a] Logical Data Model updated
• [n/a] Architectural Decision Records written for major infrastructure decisions
• [n/a] UI review complete
• QA review complete

Before merge to main

• OHS demo complete
• Ready to create production PR

Production Deploy

• PR created as Draft
• Staging smoke test completed
• PR transitioned to Open (this ready_for_review transition triggers the Slack/Jira automation)
• Reviewer added after the PR is Open (elainaparrish is the authorized approver under normal circumstances)
  • Sequence: Draft PR → Smoke test → Open PR (automation runs) → Add reviewer
  • Confirm that the Slack notification was sent after the PR was opened
  • Confirm that linked Jira ticket(s) transitioned as expected; if not, review the GitHub Actions workflow logs

After merge/deploy

• Update JIRA ticket status

[thewatermethod]

@kryswisnaskas I wrote a different PR to remove this package, we aren't using it

#3713