Bump cryptography, nbconvert, and pillow to fix high-severity vulnerabilities

[ronpal]

Summary

• Upgrades cryptography 46.0.3 → 46.0.5 to fix subgroup attack vulnerability (GHSA-r6ph-v2qm-q3c2)
• Upgrades nbconvert 7.16.6 → 7.17.0 to fix uncontrolled search path on Windows (GHSA-xm59-rqc7-hhvf)
• Upgrades pillow 12.1.0 → 12.1.1 to fix out-of-bounds write when loading PSD images (GHSA-cfh3-3jmp-rvhc)

All three are transitive dependencies — only uv.lock is changed.

Test plan

• CI passes (no direct API changes, lock-only update)

[gemini-code-assist]

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

[github-actions]

☂️ Python Coverage

current status: ✅

Overall Coverage

Lines	Covered	Coverage	Threshold	Status
7301	6743	92%	90%	🟢

New Files

No new covered files...

Modified Files

No covered modified files...

updated for commit: d8ac078 by action🐍

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 91.79%. Comparing base (d5afb63) to head (d8ac078).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1589   +/-   ##
=======================================
  Coverage   91.79%   91.79%           
=======================================
  Files         126      126           
  Lines        7439     7439           
=======================================
  Hits         6829     6829           
  Misses        610      610           

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.