v0.3.1 — Exclude compromised litellm versions

Security: Exclude litellm 1.82.7 and 1.82.8 (TeamPCP supply chain attack, CVE pending).

Also includes:

• Ingestion tagging: run_pipeline(tags=...), subdirectory-based tags via _tags_from_path(), watch --tag/-T CLI option