[security] set min version of jinja2, cryptography, python (#229)

Why
===
* There were Dependabot alerts for the indirect dependencies jinja2
and cryptography.

What changed
===
* Set the min versions in pyproject.toml that resolve the security
issue
* Had to bump python min version too because cryptography didn't like
3.9

Test plan
===
* CI passes

Author: ryantm

.semaphore/semaphore.yml

@@ -12,22 +12,22 @@ blocks:
       jobs:
         - name: flake8
           commands:
-            - sem-version python 3.9
+            - sem-version python 3.10
             - checkout --use-cache
             - pip install poetry==1.3.2 --no-cache
             - poetry install --no-root --no-interaction --no-ansi
             - poetry run flake8
         - name: unittest
           commands:
-            - sem-version python 3.9
+            - sem-version python 3.10
             - checkout --use-cache
             - pip install poetry==1.3.2 --no-cache
             - poetry install --no-interaction --no-ansi
             - poetry run coverage run -m unittest
             - poetry run coverage report -m --include='src/*'
         - name: mypy
           commands:
-            - sem-version python 3.9
+            - sem-version python 3.10
             - checkout --use-cache
             - pip install poetry==1.3.2 --no-cache
             - poetry install --no-root --no-interaction --no-ansi

poetry.lock

@@ -10,13 +10,15 @@ homepage = "https://github.com/replit/replit-py"
 documentation = "https://replit-py.readthedocs.org/"
 
 [tool.poetry.dependencies]
-python = ">=3.9,<4.0"
+python = ">=3.10,<4.0"
 typing_extensions = "^4"
 Flask = ">=3.1.0"
+jinja2 = ">=3.1.5"
 Werkzeug = ">=3,<4"
 aiohttp = ">=3.10.11"
 requests = "^2.25.1"
 pyseto = "^1.6.11"
+cryptography = ">=44.0.1"
 protobuf = "^4.21.8"
 urllib3 = ">=1.26,<3"
 aiohttp-retry = "^2.8.3"