CVE-2025-61385: Upgrade pg8000 to 1.31.5

[bbodensieck]

This issue addresses CVE-2025-61385, a SQL injection vulnerability in pg8000 ≤1.31.4 (CVSS 8.1). The vulnerability allows arbitrary SQL execution via crafted Python list inputs to pg8000.native.literal.

Changes to do

• Bump minimum pg8000 version from >=1.29.0 to >=1.31.5 in pyproject.toml
• Update uv.lock to pin pg8000 at 1.31.5 (patched release)

Reference

• Advisory: GHSA-wq2g-r956-j8cc
• Upstream fix: https://codeberg.org/tlocke/pg8000/commit/8663c746b02286c32f19c385f0e2e5da9e4fa140

[jaidisido]

Already covered by this PR: #3225
Thanks