build: Remove lodash.set and a high vulnerability identified (#2589)

- Dependabot reported vulnerability CVE-2020-8203 in lodash.set
  - GHSA-p6mc-m468-83gw
- Should no longer be importing lodash.set directly, encouraged to just
use lodash package directly and use the imports necessary
  - lodash/lodash#6061
- Just update to lodash instead, rebuild

Author: mofojed

package-lock.json

@@ -83,12 +83,11 @@
     "@types/eslint": "^8.4.10",
     "@types/jest": "^29.2.5",
     "@types/jquery": "^3.5.14",
-    "@types/lodash": "^4.14.182",
+    "@types/lodash": "^4.17.21",
     "@types/lodash.clamp": "^4.0.6",
     "@types/lodash.debounce": "^4.0.6",
     "@types/lodash.flatten": "^4.4.0",
     "@types/lodash.merge": "^4.6.9",
-    "@types/lodash.set": "^4.3.7",
     "@types/lodash.throttle": "^4.1.1",
     "@types/memoizee": "^0.4.5",
     "@types/node": "^24.8.0",

package.json

@@ -36,8 +36,7 @@
     "@deephaven/utils": "file:../utils",
     "buffer": "^6.0.3",
     "fast-deep-equal": "^3.1.3",
-    "lodash.debounce": "^4.0.8",
-    "lodash.set": "^4.3.2",
+    "lodash": "^4.17.21",
     "memoize-one": "^5.1.1",
     "memoizee": "^0.4.15",
     "plotly.js": "3.1.0",

packages/chart/package.json

@@ -6,7 +6,7 @@ import {
   TableUtils,
 } from '@deephaven/jsapi-utils';
 import type { dh as DhType } from '@deephaven/jsapi-types';
-import set from 'lodash.set';
+import { set } from 'lodash';
 import type {
   Layout,
   PlotData,

packages/chart/src/ChartUtils.ts

@@ -1,7 +1,6 @@
 /* eslint class-methods-use-this: "off" */
 import memoize from 'memoizee';
-import debounce from 'lodash.debounce';
-import set from 'lodash.set';
+import { debounce, set } from 'lodash';
 import type { dh as DhType } from '@deephaven/jsapi-types';
 import Log from '@deephaven/log';
 import { type Range } from '@deephaven/utils';