chore: resolutions audit and cleanup

[wlee221]

Description of changes

Removes unneeded resolutions.

Removed Resolutions

Here are the resolutions we removed per use case and why they were pinned.

Security vulnerabilities

We either no longer depend on them or no longer point to vulnerable version.

• ansi-regex Force ansi-regex@5.0.1 #522
• ansi-html Fix Dependabot ANSI-HTML version #1500
• async add a resolution for async #1682
• eventsource fix(security): ping eventsource version to fix security#42 #1983
• glob-parent fix: update glob-parent used by angular build #1639
• json-schema fix: upgrading json-schema to 0.4.0 or later #865
• node-forge Resolve node-forge dependabot issue #1582
• nth-check fix: update nth-check dependency #1641
• trim fix: upgrading json-schema to 0.4.0 or later #865

Broke CI/CD:

• cssnano-preset-simple Pin cssnano-simple to 3.0.0 #1513
  • next.js later pinned this on their end: src
• prism-react-renderer Pin prism-react-renderer to 1.2.1 #1273
  • This is now pinned directly from docs/package.json: src

Unknown:

• fs-extra Use aws-amplify/docs as foundation #75
  • This was initially pinned when docs poc first started. Not sure why it was pinned, but this does not block docs now. Considering we wrote a brand new ui.docs after it, I'm removing this.

Resolutions left:

• jest, ts-jest, ws (Vue: Add Way To Build Package #310)
  • They were added when we set up unit tests for vue. Left as-is, knowing that vue tests are getting updated soon with Update Vue's testing library to use Vitest #1970. (cc @ErikCH)
• vscode-vue-languageservice (chore: Pin vscode-vue-languageservice to 0.27.26 #473)
  • This is still breaking CI/CD 🤷

Issue #, if available

Description of how you validated changes

e2e tests, and also ran docs locally. Note that resolutions only affects us (and docs), and not customer builds.

Also ran yarn audit, and confirmed there are no security errors (except the usual Next.js Image Optimization one).

Checklist

• PR description included
• yarn test passes

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[changeset-bot]

⚠️ No Changeset found

Latest commit: 88510b3

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[calebpollman]

🚢 Edit: approved pending passing integ tests

[wlee221]

yarn audit result:

[wlee221]

Holding this for later; Angular 13 bump changes needed to be reverted.