Fix the Two urllib3 Vulnerabilities

@claude Upgrade urllib3 to the latest patched version across all dependency files (pyproject.toml + all poetry.lock files), add a direct override if it’s only transitive, regenerate lockfiles, and output the full diff.