bug: update vulnerable axios and unpin dependencies

[CHC383]

Node.js version

22.14.0

NPM version

pnpm 10.7.0

@checkly/cli version

5.1.0

Steps to reproduce

Checkly CLI uses axios 1.74, which is subjected to GHSA-jr5f-v2jv-69x6

What is expected?

Axios >= 1.8.2

What is actually happening?

Axios == 1.7.4

Any additional comments?

Checkly CLI is using pin versions, as a library, this leads to the problems described in resend/react-email#2026 on the consumer side. Suggestions would be:

1. (easier) Unpin the dependencies and use caret range instead.
2. (better) If pin versions is necessary, decouple the code imported by the consumers to a separate library, minimize the dependencies and use caret ranges there, then ask the consumers to import the new library instead. As for the CLI use cases (CI/CD for example), ask the consumers to install the CLI separately instead of adding it to package.json, so that its dependencies won't interfere with the consumers' dependencies.

[sorccu]

You're right, let me look into this.

[sorccu]

This is being worked on in #1058.

[sorccu]

#1058 has been merged and the issue should therefore be solved, but it might take a few more days before we can cut a new version.