Python: Update package dependencies (microsoft#5555)

* Update dependencies

* Preserve mcp[ws] and uvicorn[standard] extras in override-dependencies

Bare-package overrides on mcp and uvicorn dropped the [ws] and [standard]
extras (and their transitive deps like httptools, watchfiles) from the
generated lock. Re-add the extras to the overrides so the lock matches
what workspace packages actually request.

Author: moonbox3

python/pyproject.toml

@@ -52,8 +52,9 @@ dev = [
 [tool.uv]
 package = false
 prerelease = "if-necessary-or-explicit"
-# Keep transitive litellm below the compromised 1.82.7/1.82.8 releases.
-constraint-dependencies = ["litellm<1.82.7"]
+# Security floors for transitive deps; overrides bypass litellm[proxy]'s strict pins.
+constraint-dependencies = ["litellm>=1.83.7", "fastapi-sso>=0.19.0"]
+override-dependencies = ["mcp[ws]>=1.27.0", "uvicorn[standard]>=0.34.0"]
 environments = [
     "sys_platform == 'darwin'",
     "sys_platform == 'linux'",
@@ -93,7 +94,6 @@ agent-framework-orchestrations = { workspace = true }
 agent-framework-purview = { workspace = true }
 agent-framework-redis = { workspace = true }
 agent-framework-azure-contentunderstanding = { workspace = true }
-litellm = { url = "https://files.pythonhosted.org/packages/57/77/0c6eca2cb049793ddf8ce9cdcd5123a35666c4962514788c4fc90edf1d3b/litellm-1.82.1-py3-none-any.whl" }
 
 [tool.ruff]
 line-length = 120