dependabot updates for September

[cantsin]

We have some fairly complicated library updates that need looking into:

• djangorestframework update seems to break tests
• websocket and puppeteer both need to be updated in tandem
• certifi needs to be updated but dependabot can't seem to actually create a PR
• And whatever else is in the "Security" -> "Dependabot alerts" section

[nateborr]

If at all possible I'd like to resolve our Tock monitoring issues in #1792 before applying these updates, so that we'll be able to detect errors and other unexpected behavior in production when we apply these library updates.

[nateborr]

I'll proceed with these updates. #1792 has been resolved, we have application monitoring for Tock again, and the batch of minor package updates since June 11 2024 has been deployed.

[nateborr]

I've run into multiple issues trying to apply the library updates piecemeal and discussed next steps with @neilmb :

• We're currently using Pipenv for Python dependency management in Tock, but that tool does not readily allow you to update an individual package and its dependency tree, without resolving and applying all available updates to the package specifications in the project's Pipfile.
• For this current set of updates, I'm going to do what the team has generally done in similar situations in the past, and attempt to apply all the package updates simultaneously.
• @neilmb is opening a follow-up issue proposing that we migrate Tock to use Poetry for dependency management, and document that process.