chore(deps): update ajv to 6.14.0 (CVE-2025-69873)

[mapup-security-fix-bot]

Security Fix: CVE-2025-69873 — ajv < 6.14.0

Vulnerability Summary

Field	Value
Package	ajv
Ecosystem	npm
Severity	Medium
Vulnerable range	< 6.14.0
Fixed version	6.14.0
CVE	CVE-2025-69873

What Changed

ajv is a transitive dependency resolved at version 6.12.6 via the chain:
request@2.88.2 → har-validator@5.1.5 → ajv@^6.12.3

This PR adds an overrides entry to javascript/package.json to force the resolved version to >=6.14.0 and regenerates javascript/package-lock.json.

Warnings / Notes for Reviewer

• ajv@6.14.0 carries the npm dist-tag legacy (the active maintained series is 8.x). However, v6.14.0 is the correct patched release within the v6 line and is a drop-in patch bump — no API or behavioural changes observed in the changelog.
• har-validator itself is deprecated (this library is no longer supported), as is the top-level request package. A follow-up to migrate away from request would eliminate this entire dependency subtree.
• CI does not include automated unit/integration tests (only secret-scanning and SAST workflows), so functional validation should be performed manually if needed.

References

• CVE-2025-69873: https://nvd.nist.gov/vuln/detail/CVE-2025-69873
• ajv changelog: https://github.com/ajv-validator/ajv/releases