Locking down dependencies for www.python.org

### Describe the bug

- [ ] Install from a lock file with hashes.
- [ ] Enable Dependabot with cooldowns to upgrade dependencies over time.
- [ ] Using Python 3.12.6 (3.12.10 is available). Should figure out a reliable upgrade strategy.
- [ ] Remove external dependencies that aren't needed:
  - [ ] Installing old pandoc from GitHub releases. Can we use `pypandoc-binary`?
  - [ ] Using `ewdurbin/ngix-static` Dockerfile, likely outdated. Can we manage Nginx separately?

### To Reproduce

N/A

### Expected behavior

N/A

### URL to the issue

_No response_

### Screenshots

```bash
N/A
```

### Browsers

Other

### Operating System

Other

### Browser Version

_No response_

### Relevant log output

```shell

```

### Additional context

_No response_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Locking down dependencies for www.python.org #2988

Describe the bug

To Reproduce

Expected behavior

URL to the issue

Screenshots

Browsers

Operating System

Browser Version

Relevant log output

Additional context

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Locking down dependencies for www.python.org #2988

Description

Describe the bug

To Reproduce

Expected behavior

URL to the issue

Screenshots

Browsers

Operating System

Browser Version

Relevant log output

Additional context

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions