chore: cherry pick security fixes for v3.2.1 backport [security]

[aabmass]

Note this is being merged into a new branch v3.2.1-release for a backport release, which starts at tag v3.2.0. I have cherry picked a few upgrades to fix security vulnerabilities and build issues.

npm audit fix --omit=dev

up to date, audited 87 packages in 2s

8 packages are looking for funding
  run `npm fund` for details

found 0 vulnerabilities

[aabmass]

CLA bot is complaining about a Xoogler, but these commits are cherry-picks which were already present in the repo.

[codecov-commenter]

Codecov Report

Merging #263 (63a0f4f) into v3.2.1-release (364d89d) will decrease coverage by 0.30%. The diff coverage is 49.48%.

@@                Coverage Diff                 @@
##           v3.2.1-release     #263      +/-   ##
==================================================
- Coverage           42.21%   41.92%   -0.30%     
==================================================
  Files                  14       14              
  Lines                2061     2092      +31     
  Branches               42       42              
==================================================
+ Hits                  870      877       +7     
- Misses               1173     1197      +24     
  Partials               18       18              

Impacted Files	Coverage Δ
proto/profile.js	23.55% <48.14%> (+0.03%)	:arrow_up:
ts/src/profile-serializer.ts	100.00% <100.00%> (ø)

... and 1 file with indirect coverage changes

[aabmass]

I verified the system tests are passing locally so will ignore those kokoro results