feat: add security sink detection patterns for JavaScript/TypeScript

- Introduced `sink-detect.js` with various security sink detection patterns categorized by type (e.g., command injection, SQL injection, file operations).
- Implemented functions to build a lookup map for fast sink detection and to match sink calls against known patterns.
- Added `package-lock.json` for dependency management.

tests/interop/StellaOps.Interop.Tests/InteropTestHarness.cs

@@ -197,58 +197,3 @@ public sealed class InteropTestHarness : IAsyncLifetime
         return Array.Empty<GrypeFinding>();
     }
 }
-
-public enum SbomFormat
-{
-    CycloneDx16,
-    Spdx30
-}
-
-public sealed record SbomResult(
-    bool Success,
-    string? Path = null,
-    SbomFormat? Format = null,
-    string? Content = null,
-    string? Digest = null,
-    string? Error = null)
-{
-    public static SbomResult Failed(string error) => new(false, Error: error);
-}
-
-public sealed record AttestationResult(
-    bool Success,
-    string? ImageRef = null,
-    string? Error = null)
-{
-    public static AttestationResult Failed(string error) => new(false, Error: error);
-}
-
-public sealed record GrypeScanResult(
-    bool Success,
-    IReadOnlyList<GrypeFinding>? Findings = null,
-    string? RawOutput = null,
-    string? Error = null)
-{
-    public static GrypeScanResult Failed(string error) => new(false, Error: error);
-}
-
-public sealed record FindingsComparisonResult(
-    decimal ParityPercent,
-    bool IsWithinTolerance,
-    int StellaTotalFindings,
-    int GrypeTotalFindings,
-    int MatchingFindings,
-    int OnlyInStella,
-    int OnlyInGrype,
-    IReadOnlyList<(string VulnId, string Purl)> OnlyInStellaDetails,
-    IReadOnlyList<(string VulnId, string Purl)> OnlyInGrypeDetails);
-
-public sealed record Finding(
-    string VulnerabilityId,
-    string PackagePurl,
-    string Severity);
-
-public sealed record GrypeFinding(
-    string VulnerabilityId,
-    string PackagePurl,
-    string Severity);