Update Python and Cargo lockfiles

[tconley1428]

Summary

• refresh uv.lock to the latest allowed dependency set under the repo's current uv policy
• update temporalio/bridge/Cargo.lock to pull rustls-webpki 0.103.13
• update the repo's direct pytest constraint from ~=7.4 to ~=9.0 and relock to pytest 9.0.3
• leave litellm unchanged for now because newer releases conflict with the repo's current openai-agents / openai dependency constraints

Dependabot coverage

• authlib: now 1.7.0 (supersedes #1460)
• langsmith: now 0.7.33 (supersedes #1457)
• mako: now 1.3.11 (supersedes #1459)
• python-multipart: now 0.0.26 (supersedes #1455)
• cryptography: now 46.0.7 (supersedes #1429)
• pytest: now 9.0.3 with pyproject.toml updated to pytest~=9.0 (supersedes #1444)
• rustls-webpki: now 0.103.13 in temporalio/bridge/Cargo.lock (supersedes #1479)
• litellm: intentionally unchanged; #1478 is still open

Notes

• I searched the recent Dependabot PRs, refreshed the Python lockfile, and updated the bridge Cargo lockfile on this branch.
• The superseded Dependabot PRs covered by this branch have been closed and pointed back here.
• litellm was investigated but not changed because newer releases currently pin openai==2.24.0, which conflicts with the repo's openai-agents requirement on newer supported Python splits.

Validation

• uv lock --check
• cargo update -p rustls-webpki --dry-run
• uv run pytest --version
• uv run pytest tests/test_common.py -q

Closes #1485