[codex] Bump requests example dependency

[stacknil]

Brief Design Summary

This PR updates the sbom-diff-and-risk requirements example away from the remaining vulnerable requests sample versions.

It updates requirements_before.txt to requests==2.33.0 and requirements_after.txt to requests==2.34.2, preserving the version-change example while keeping both sides above the Dependabot advisory range. It also regenerates the matching deterministic sample requirements JSON and Markdown reports so golden tests remain aligned.

This supersedes Dependabot PR #59, which bumps only the example input files and leaves matching sample report artifacts stale.

No runtime behavior, package metadata, workflows, release tags, PyPI/TestPyPI publishing, or production PyPI status changed.

Files Changed

• tools/sbom-diff-and-risk/examples/requirements_before.txt
• tools/sbom-diff-and-risk/examples/requirements_after.txt
• tools/sbom-diff-and-risk/examples/sample-requirements-report.json
• tools/sbom-diff-and-risk/examples/sample-requirements-report.md

Validation

cd tools/sbom-diff-and-risk
python -m pytest
python -m build
$files = Get-ChildItem dist -File | ForEach-Object { $_.FullName }
python -m twine check $files
git diff --check

Results:

• python -m pytest: 162 passed
• python -m build: passed, produced sbom_diff_and_risk-0.9.0 wheel and sdist
• python -m twine check: passed for wheel and sdist
• git diff --check: passed
• package version remains 0.9.0
• .github/workflows unchanged

Out of Scope

• No runtime behavior changes
• No package version bump
• No workflow changes
• No tag or GitHub Release
• No PyPI/TestPyPI publishing
• No production PyPI workflow