arborist: sanitize packageName in path construction for linked strategy

Add sanitizeName() to strip path traversal sequences from package names
before using them in filesystem path construction. Applied at all 9
locations where packageName is interpolated into path.join() calls.

Note: this diff includes formatting changes from the project linter.

Author: KevinZhao