ci: add cooldown settings with org package excludes to dependabot configuration

[steveoh]

This PR adds cooldown settings to the dependabot configuration for all package ecosystems.

What this does:

• Allows dependabot to delay including dependencies for a configurable number of days
• Excludes organization packages (ugrc-*, @ugrc/*, agrc/*) from cooldown delays so they update immediately

Benefits:

• The community finds supply chain vulnerabilities and bugs before they are included in a pull request
• Organization packages are updated immediately without delays for faster internal development cycles

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 22.38%. Comparing base (69ba690) to head (cecc07f).
⚠️ Report is 12 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #136   +/-   ##
=======================================
  Coverage   22.38%   22.38%           
=======================================
  Files          13       13           
  Lines         746      746           
  Branches      132      132           
=======================================
  Hits          167      167           
  Misses        574      574           
  Partials        5        5           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.