Upgrade all backend, frontend, and GitHub Actions dependencies to their latest versions

[tjementum]

Summary & Motivation

Bring every backend (.NET and NuGet), frontend (npm), and GitHub Actions dependency to its latest version, in line with the policy of always running the newest releases. Trivial patch and minor bumps are grouped into one commit per side. Each major, and every bump that required a code or configuration change, is committed on its own.

Backend majors:

• Mapster 10.0.8: handle the now nullable Adapt return in ApiResult.
• Aspire.Azure.Storage.Blobs 13.4.6: adapt to the new GetUserDelegationKey options API.
• Azure.Monitor.OpenTelemetry.AspNetCore 1.5.0: wire Azure Monitor only when running in Azure, so its exporter and Live Metrics no longer block host shutdown during test teardown.
• JetBrains.Annotations 2026.2.0.

Frontend majors:

• TypeScript 6.0.3: adopted through an openapi-typescript peer override, because no openapi-typescript release accepts TypeScript 6 yet.
• oxlint 1.71.0: fix the new accessibility findings, switch the toolbar search inputs to type="search" for the native searchbox role, and disable prefer-tag-over-role for the headless component architecture.
• react-day-picker 10.0.1.
• Playwright: adopt a resilient route teardown helper for the end-to-end tests.

GitHub Actions: bump actions/checkout to v7 and actions/github-script to v9.

Security: pin the transitive SQLitePCLRaw.lib.e_sqlite3 to 3.50.3 to clear a high-severity advisory in the test-only SQLite native library. Removable once Microsoft.EntityFrameworkCore.Sqlite ships a SQLitePCLRaw built on SQLite 3.50.2 or newer.

Developer CLI: restore .NET tools after bumping the tool manifest, add a quiet mode, pin Microsoft.ApplicationInsights to its current major, and fix a crash when the outdated package JSON omits the projects key.

This change adds Microsoft.ApplicationInsights and Microsoft.ApplicationInsights.AspNetCore to the pinned exceptions, because their next major drops PageView tracking in favor of OpenTelemetry and the codebase relies on PageView, so adopting that major is a separate effort.

Checklist

• I have added tests, or done manual regression tests
• I have updated the documentation, if necessary

[sonarqubecloud]

Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
3.3% Duplication on New Code

See analysis details on SonarQube Cloud