fix: github vulnerabilities (urllib, idna, pytest, black, requests, filelock, pytest)

[msweier]

The following are patched (only idna is patched for python 3.9) :

• idna: Specially crafted inputs to idna.encode() can bypass CVE-2024-3651 fix (medium) — fixed for all Python versions
• urllib3: Sensitive headers forwarded across origins in proxied low-level redirects (high) — fixed for Python 3.10+
• urllib3: Decompression-bomb safeguards bypassed in parts of the streaming API (high) — fixed for Python 3.10+
• pytest: Vulnerable tmpdir handling (medium) — fixed for Python 3.10+
• requests: Insecure Temp File Reuse in extract_zipped_paths() utility function (medium) — fixed for Python 3.10+
• black: Arbitrary file writes from unsanitized user input in cache file name (high) — fixed for Python 3.10+
• filelock: TOCTOU Symlink Vulnerability in SoftFileLock (medium) — fixed for Python 3.10+
• filelock: TOCTOU race condition which allows symlink attacks during lock file creation (medium) — fixed for Python 3.10+

Black formatting updated on

• cwmscli/commands/commands_cwms.py
• cwmscli/commands/users.py
• tests/usgs/test_rating_ini_file_import.py

[krowvin]

Looks to have some formatting changes in addition to version bumps.

Assuming you tested on your end I'm approving the version bump!