fix(security): ship isolated JWT decorator hotfix

* fix(security): isolate dependency hotfix from github main

* fix(security): expose hotfix jwt decorators across routes

* test(e2e): restore stable app header selectors

* test(e2e): align planner and app shell checks

* test(e2e): add legacy settings page selectors

* test(e2e): align settings page contracts

package.json

@@ -11,6 +11,9 @@
     "husky": "^9.1.0",
     "lint-staged": "^16.4.0"
   },
+  "overrides": {
+    "yaml": "^2.8.3"
+  },
   "lint-staged": {
     "backend/src/**/*.ts": [
       "npx @biomejs/biome check --write --no-errors-on-unmatched"