unblock ci: update vuln deps + fix npm registry for snaps firefox

[kumavis]

• updates async@2 for vuln fix
• ignores associated async@2 vuln report bc report hasnt been updated to include fixed range
• fix snaps npm registry for firefox Use regular NPM registry for snaps on Firefox #14439
• (bonus) removes extraneously ignored vulns

note: https://github.com/MetaMask/pm-security/issues/72

[kumavis]

fixed upstream caolan/async#1828 (comment)

[kumavis]

removed the patch, keeping the ignored vuln until the vuln is updated

[FrederikBolding]

The yarn.lock file still contains the vulnerable version, you'll need to delete that and regenerate the lock file to update. We also don't need to add async as a direct dependency

[github-actions]

CLA Signature Action: All authors have signed the CLA. You may need to manually re-run the blocking PR check if it doesn't pass in a few minutes.

[metamaskbot]

Builds ready [6ad6dfd]

• builds: chrome, firefox, opera
• builds (beta): chrome, firefox, opera
• builds (flask): chrome, firefox, opera
• build viz: Build System
• code coverage: Report
• storybook: Storybook
• all artifacts
• bundle viz:

  • background: 0, 1, 2, 3, 4, 5, 6, 7
  • common: 0, 1, 2, 3, 4, 5, 6, 7, 8
  • content-script: 0
  • contentscript: contentscript
  • disable-console: disable-console
  • inpage: inpage
  • phishing-detect: phishing-detect
  • policy-load: policy-load
  • sentry-install: sentry-install
  • ui: 0, 1, 2, 3, 4, 5, 6, 7, 8, 9

Page Load Metrics (1368 ± 43 ms)

Platform	Page	Metric	Min (ms)	Max (ms)	Average (ms)	StandardDeviation (ms)	MarginOfError (ms)
Chrome	Home	firstPaint	88	154	110	18	9
		domContentLoaded	1214	1485	1356	74	36
		load	1214	1587	1368	90	43
		domInteractive	1214	1485	1356	74	36