fix: remaining dependabot security issues (#890)

* Upgrade docs deps

* Upgrade frontend to latest deps

* Update package overrides

* Remove redundant deps

* Add tailwind postcss plugin

* Replace language select with chakra

* Fix main nav

* Patch gray matter

* Fix webpack override

* Replace python-jose with pyjwt

* Override kv url for frontend in compose

* Upgrade hatchet sdk

* Update docs

* Supress pydantic warnings

server/tests/test_user_websocket_auth.py

@@ -67,7 +67,7 @@ def appserver_ws_user(setup_database):
 @pytest.fixture(autouse=True)
 def patch_jwt_verification(monkeypatch):
     """Patch JWT verification to accept HS256 tokens signed with SECRET_KEY for tests."""
-    from jose import jwt
+    import jwt
 
     from reflector.settings import settings
 
@@ -84,7 +84,7 @@ def _make_dummy_jwt(sub: str = "user123") -> str:
     # Create a short HS256 JWT using the app secret to pass verification in tests
     from datetime import datetime, timedelta, timezone
 
-    from jose import jwt
+    import jwt
 
     from reflector.settings import settings