ci: add cooldown settings with org package excludes to dependabot configuration

[steveoh]

This PR adds cooldown settings to the dependabot configuration for all package ecosystems.

What this does:

• Allows dependabot to delay including dependencies for a configurable number of days
• Excludes organization packages (ugrc-*, @ugrc/*, agrc/*) from cooldown delays so they update immediately

Benefits:

• The community finds supply chain vulnerabilities and bugs before they are included in a pull request
• Organization packages are updated immediately without delays for faster internal development cycles

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 100.00%. Comparing base (59d8c6a) to head (41537e9).
⚠️ Report is 28 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##              main       #62   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            2         2           
  Lines            9         8    -1     
=========================================
- Hits             9         8    -1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.