Update Version and bump requirements

[luke-kucing]

This branch updates multiple dependencies to address open CVE (Common Vulnerabilities and Exposures) security vulnerabilities and brings the project up to date with the latest unstructured package release.

Key Changes:

• Version bump: 0.0.89 → 0.0.90
• Major dependency updates:
  • unstructured: 0.17.2 → 0.18.18
  • torch: 2.7.1 → 2.9.0
  • transformers: 4.52.4 → 4.57.1
  • fastapi: 0.115.12 → 0.121.0
  • cryptography: 45.0.4 → 46.0.3
  • pillow: 11.3.0 → 12.0.0
  • scipy: 1.15.3 → 1.16.3
  • networkx: 3.4.2 → 3.5

Additional improvements:

• Enhanced Makefile pip-compile workflow for better requirement management
• Added constraints.txt for improved dependency resolution
• Streamlined test requirements (reduced from 723 to much fewer lines)

[socket-security]

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff	Package	Supply Chain Security	Vulnerability	Quality	Maintenance	License
	jupyterlab@​4.4.3 ⏵ 4.4.10					+21
	psutil@​7.0.0 ⏵ 7.1.3	+1
	tornado@​6.5.1 ⏵ 6.5.2	+1
	ipython@​9.3.0 ⏵ 9.7.0	+1
	torch@​2.7.1 ⏵ 2.9.0		+2
	onnxruntime@​1.22.0 ⏵ 1.23.2	+1
	onnx@​1.18.0 ⏵ 1.19.1	+1
	transformers@​4.52.4 ⏵ 4.57.1		+6
	debugpy@​1.8.14 ⏵ 1.8.17	+1
	nltk@​3.9.1 ⏵ 3.9.2	+1				+20
	matplotlib@​3.10.3 ⏵ 3.10.7	+1
	mypy@​1.16.0 ⏵ 1.18.2	+1
	notebook@​7.4.3 ⏵ 7.4.7					-10
	scipy@​1.15.3 ⏵ 1.16.3	+1
	pandas@​2.3.0 ⏵ 2.3.3	+1
	unstructured@​0.17.2 ⏵ 0.18.18
	huggingface-hub@​0.33.0 ⏵ 0.36.0	-4
	torchvision@​0.22.1 ⏵ 0.24.0	+1
	fonttools@​4.58.2 ⏵ 4.60.1	+1
	pillow@​11.3.0 ⏵ 12.0.0
	black@​25.1.0 ⏵ 25.9.0
	nbdev@​2.4.2 ⏵ 2.4.6	+1
	fsspec@​2025.5.1 ⏵ 2025.10.0
	prompt-toolkit@​3.0.51 ⏵ 3.0.52	+1
	pytest@​8.4.0 ⏵ 8.4.2	+1
	accelerate@​1.7.0 ⏵ 1.11.0	+1
	joblib@​1.5.1 ⏵ 1.5.2	+1
	hf-xet@​1.1.3 ⏵ 1.2.0
	jupyterlab-widgets@​3.0.15 ⏵ 3.0.16	+4
	google-auth@​2.40.3 ⏵ 2.43.0
	jupyter-server@​2.16.0 ⏵ 2.17.0	+1
	fastcore@​1.8.2 ⏵ 1.8.15
See 99 more rows in the dashboard

View full report