add sanitizer

[thetif]

Resolves #3832

Description-
Resolve issues discovered by the snyk plugin in vscode.

This pull request changes...

• res.send to res.json where applicable
• adds csrf, cookie-parser, and express-validator to improve security
• adds some validation to param/body inputs from users

This pull request also touches…

• updated the mongo settings to match new mongo configs

This pull request was tested in the follow ways…

• automated tests
• manual verification that site is still functional

This pull request is ready to review when...

• Automated tests are updated (and all tests are passing)
• The experience passes a basic manual accessibility audit (keyboard nav, screenreader, text scaling) OR an exemption is documented

This pull request can be merged when…

• Code has been reviewed by someone other than the original author
• QA has verified the accessibility and functionality related to the change
• Design has approved the experience
• Product has approved the experience

[codecov-commenter]

Codecov Report

Merging #3846 (a9108be) into main (7ee73f7) will decrease coverage by 0.01%.
The diff coverage is 81.81%.

@@            Coverage Diff             @@
##             main    #3846      +/-   ##
==========================================
- Coverage   83.34%   83.32%   -0.02%     
==========================================
  Files         313      313              
  Lines        6393     6398       +5     
  Branches     1204     1204              
==========================================
+ Hits         5328     5331       +3     
- Misses        971      973       +2     
  Partials       94       94              

Impacted Files	Coverage Δ
api/routes/apds/patch.js	100.00% <ø> (ø)
api/middleware/errorHandler.js	75.00% <50.00%> (-5.96%)	⬇️
api/routes/states/affilitations/get.js	85.71% <50.00%> (ø)
api/db/mongodb.js	60.52% <100.00%> (ø)
api/routes/apds/files/get.js	100.00% <100.00%> (ø)
api/routes/apds/files/post.js	100.00% <100.00%> (ø)
api/routes/auth/certifications/files/post.js	100.00% <100.00%> (ø)
api/routes/users/get.js	100.00% <100.00%> (ø)
api/util/mockResponse.js	100.00% <100.00%> (ø)

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7ee73f7...a9108be. Read the comment docs.

[cms-eapd-bot]

This deploy was cleaned up.

[tbolt]

looks good 👍

[tbolt]

just curious, whats the intention with adding this top-level?

[mirano-darren]

Looks good! Good stuff, Everything looks unphased and booted up as normal.
Quick note: If you get a Mongo error on "docker compose up" you need to update your env_vars

[jeromeleecms]

Fixed the deployment issue with Mongo too!