fix: update dependencies and GitHub Actions for security

[sanjaychelliah]

Update outdated dependencies to latest secure versions:

• pytest-xdist: 2.5.0 → 3.8.0 (2 years of security updates)
• setuptools: 78.1.1 → 82.0.1 (latest security patches)
• llama-index-core: 0.13.0 → 0.14.21 (bug fixes and improvements)
• markdown: 3.8.1 → 3.10.2 (security patches)

Update GitHub Actions to latest versions:

• actions/setup-python: v4 → v5 (Node.js 20 runtime, security improvements)
• pre-commit/action: v3.0.0 → v3.0.1 (latest patch fixes)

All updates verified for compatibility with no conflicts detected.

[Copilot]

Pull request overview

This PR updates pinned Python dependencies and GitHub Actions versions to pick up security patches and keep CI tooling current.

Changes:

• Bumped test dependency pytest-xdist to a newer pinned version.
• Bumped runtime/dev dependencies (llama-index-core, markdown) to newer pinned versions.
• Updated GitHub Actions workflows to use actions/setup-python@v5 and pre-commit/action@v3.0.1, and bumped workflow build dependency setuptools.

Reviewed changes

Copilot reviewed 6 out of 7 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
tests/requirements.txt	Updates pinned test dependency pytest-xdist.
requirements.txt	Updates pinned runtime dependencies (llama-index-core, markdown).
requirements-dev.txt	Keeps dev requirements aligned with runtime pins (llama-index-core, markdown).
.github/workflows/run_tests.yml	Updates CI to actions/setup-python@v5 and pre-commit/action@v3.0.1.
.github/workflows/run_annotation_tests.yml	Updates annotation CI to actions/setup-python@v5.
.github/workflows/requirements.txt	Updates pinned workflow dependency setuptools.
.github/workflows/publish.yml	Updates publishing workflow to actions/setup-python@v5.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.