fix: fixing vulnerability: server-side request forgery in axios

[jkalandaibm]

PR summary

axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.

Fixes:

also due to the changes in in node-sdk-core, under the following PR: IBM/node-sdk-core@901ece0

I had to re-adjust the UT files to ensure the functions used for testing are pulled from ibm-cloud/sdk-test-utilities versus its original directory.
As a result of those needed manual changes, a PR generated by dependabot - #134 was failing.

Snippet of one of the many failing messages:

FAIL test/unit/direct-link.v1.test.js
  ● Test suite failed to run
    TypeError: Cannot destructure property 'getOptions' of 'unitTestUtils' as it is undefined.
      26 |
      27 | const {
    > 28 |   getOptions,
         |   ^
      29 |   checkUrlAndMethod,
      30 |   checkMediaHeaders,
      31 |   expectToBePromise,
      at Object.getOptions (test/unit/direct-link.v1.test.js:28:3)

PR Checklist

Please make sure that your PR fulfills the following requirements:

• The commit message follows the Angular Commit Message Guidelines.
• Tests for the changes have been added (for bug fixes / features)
• Docs have been added / updated (for bug fixes / features)

PR Type

• Bugfix
• Feature
• Code style update (formatting, local variables)
• Refactoring (no functional changes, no api changes)
• New tests
• Build/CI related changes
• Documentation content changes
• Other (please describe)

What is the current behavior?

What is the new behavior?

Does this PR introduce a breaking change?

• Yes
• [x ] No

Other information

[jkalandaibm]

@srukotla your fix didn't solve the problem. The builds are failing. Please review this.

[arjunchauhanibm]

looks good

[MalarvizhiK]

🎉 This PR is included in version 0.35.2 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀