fix(deps): bump python-dotenv to 1.2.2

[raphael-intugle]

Description

Bump python-dotenv to the patched 1.2.2 release to address the symlink-following file overwrite vulnerability in set_key() / unset_key().

Type of Change

• 🐛 Bug fix (non-breaking change which fixes an issue)
• ✨ New feature (non-breaking change which adds functionality)
• 💥 Breaking change (fix or feature that would cause existing functionality to not work as expected)
• 📝 Documentation update
• 🎨 Code style update (formatting, renaming)
• ♻️ Refactoring (no functional changes)
• ⚡ Performance improvement
• ✅ Test update
• 🔧 Configuration change
• 🏗️ Infrastructure/build change

Related Issue(s)

Related to #216

Changes Made

• bumped the main package dependency from python-dotenv>=1.1.1 to python-dotenv>=1.2.2
• bumped the Streamlit extra pin from python-dotenv==1.1.1 to python-dotenv==1.2.2
• updated src/intugle/streamlit_app/requirements.txt to python-dotenv==1.2.2
• regenerated uv.lock so the resolved package version and hashes now point to python-dotenv 1.2.2

Testing

Test Configuration

• Python Version: 3.12.3
• OS: Linux
• LLM Provider (if applicable): N/A

Test Cases

• Unit tests pass locally
• Manual testing completed
• Tested with sample datasets

Test Commands

uv lock --upgrade-package python-dotenv

Screenshots/Examples

python-dotenv 1.1.1 -> 1.2.2

Checklist

• My code follows the code style of this project
• I have performed a self-review of my own code
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• My changes generate no new warnings or linter errors
• I have added tests that prove my fix is effective or that my feature works
• New and existing unit tests pass locally with my changes
• Any dependent changes have been merged and published
• I have updated the relevant notebooks (if applicable)
• I have checked my code and corrected any misspellings

Documentation Updates

• README.md updated
• Docstrings added/updated
• Documentation site updated (if needed)
• Notebook examples updated (if applicable)
• CHANGELOG updated (if applicable)

Breaking Changes

• This PR introduces breaking changes
• Migration guide provided (if applicable)

Performance Impact

• No significant performance impact
• Performance benchmarks run
• Performance improvement:
• Performance regression:

Additional Context

This PR only contains the final dependency bump for the python-dotenv advisory. Unrelated local workspace files remain excluded.

Deployment Notes

Consumers should refresh their environment/install so python-dotenv 1.2.2 is actually installed.