Python 3.13 + 3.12: Add tests for CVE-2025-0938

[techalchemy]

• run upstream unittests for CVE-2025-0938 on python 3.13 and 3.12 to ensure we do not regress
• upstream tracking issue: [CVE-2025-0938] urlparse does not flag hostname *containing* [ or ] as incorrect python/cpython#105704

[imjasonh]

ci-cve-scan says

└── 📄 /.PKGINFO
        📦 python-3.12 3.12.8-r4 (apk)
            Unknown CVE-2025-0938

This indicates that NVD/grype still thinks .8 is vulnerable, which just means we need to make sure to file an advisory that we've got the fix in .8.

Separately, we have these update PRs, which are also not being detected as fixed:

• python-3.12/3.12.9 package update #41297
• python-3.13/3.13.2 package update #41296

We could merge both this PR and those, or just those, up to you. We'll need advisories either way.

[techalchemy]

which just means we need to make sure to file an advisory that we've got the fix in .8.

I did open an advisory PR, wolfi-dev/advisories#11921 -- but we opted to close this for now in favor of giving a bit of time to see if grype updates.

I am still getting my bearings so I will probably defer to @ajayk and @smoser as to whether we still want to merge these tests.