[Snyk] Upgrade langchain from 0.0.156 to 0.2.9

[steve-hb]

Snyk has created this PR to upgrade langchain from 0.0.156 to 0.2.9.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 125 versions ahead of your current version.

• The recommended version was released on 23 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-ZOD-5925617	482	Proof of Concept

Release notes

Package name: langchain

• 0.2.9 - 2024-07-10
  

  What's Changed

  • core[minor]: Add ID field to document by @ bracesproul in #5893
  • core[patch]: support image url prompt with mustache by @ a1ooha in #5916
  • core[patch]: Fix rollup warning by @ bracesproul in #5929
  • core[patch]: Release 0.2.11 by @ bracesproul in #5930
  • langchain[patch]: Bump min core version by @ bracesproul in #5931
  • anthropic[patch]: Force tool call by name in withStructuredOutput by @ bracesproul in #5933
  • mistral[patch]: Force tool use in withStructuredOutput by @ bracesproul in #5932
  • anthropic[patch]: Release 0.2.3 by @ bracesproul in #5934
  • mistralai[patch]: Release 0.0.25 by @ bracesproul in #5935
  • docs[patch]: Update intro, docs nits by @ jacoblee93 in #5936
  • community-experimental[minor]: Move experimental Chrome AI to LLMs by @ jacoblee93 in #5938
  • community[patch]: Release 0.2.16 by @ jacoblee93 in #5940
  • ci[patch]: Update CI permissions by @ jacoblee93 in #5946
  • docs[patch]: Update README.md by @ jacoblee93 in #5945
  • 👥 Update LangChain people data by @ jacoblee93 in #5947
  • docs[patch]: Fix broken Scrimba link by @ jacoblee93 in #5953
  • core[patch]: Adds support for plain message objects as shorthand for messages by @ jacoblee93 in #5954
  • core[patch]: Release 0.2.12 by @ jacoblee93 in #5955
  • docs[patch]: Update install instructions by @ jacoblee93 in #5957
  • jacob/5890 by @ jacoblee93 in #5956
  • community[minor]: Taskade Project Loader by @ yeouchien in #5927
  • docs[patch]: Fix typo by @ jacoblee93 in #5964
  • docs[patch]: Docs nits by @ jacoblee93 in #5965
  • redis[patch]: Adds a connection pool to RedisChatHistory by @ itamarhaber in #5963
  • Fixes issue with local build from a devcontainer by @ lamoglia in #5966
  • community[patch]: unstructured loader support extractImageBlockType option by @ jeasonnow in #5949
  • community[patch]: Release 0.2.17 by @ jacoblee93 in #5967
  • docs[patch]: Update structured output docs to be more opinionated by @ jacoblee93 in #5968
  • baidu-qianfan[major]: Baidu Qianfan ChatCompletion by @ dl102306 in #5879
  • docs[patch]: Update Scrimba link by @ jacoblee93 in #5975
  • api_refs[minor]: Start generating sitemaps and bump typedoc version by @ bracesproul in #5976
  • core[patch]: Adds mermaid graph format by @ jacoblee93 in #5978
  • core[patch]: Expose graph endpoint from core by @ jacoblee93 in #5979
  • core[patch]: Release 0.2.13 by @ jacoblee93 in #5980
  • community[patch]: Fix community upstash test for new versions of @ upstash/redis by @ jacoblee93 in #5986
  • community[minor]: Support configurable search parameters for Milvus by @ yokingma in #5877
  • multiple[patch]: upgrade uuid version by @ chentschel in #5969
  • core[patch]: Fix typo in graph edge construction code by @ jacoblee93 in #5985
  • community[patch]: feat: add milvus partitionKey by @ zhanshuyou in #5983
  • core[patch]: Release 0.2.14 by @ jacoblee93 in #5987
  • core[patch]: Remove dead code by @ jacoblee93 in #5991
  • core[patch]: Fix parent run tracking when streaming runnable lambdas by @ jacoblee93 in #5993
  • core[patch]: RunnableWithFallbacks tracing fix, refactor by @ jacoblee93 in #5995
  • docs: rm discord by @ baskaryan in #5999
  • openai[patch]: Fix integration tests by @ bracesproul in #5998
  • partners[patch]: Fix flaky token counting tests by @ bracesproul in #6000
  • mistralai[patch]: Fix flaky test using callbacks by @ bracesproul in #6001
  • ci[patch]: Set fail-fast to false in standard tests & update standard int test command by @ bracesproul in #6002
  • anthropic[patch]: Remove sleep after each test by @ bracesproul in #6003
  • standard-tests[minor]: Improve prompting to force model to call tool by @ bracesproul in #6004
  • partners[patch]: Handle setting background callbacks to false in all relevant int tests by @ bracesproul in #6006
  • google-genai[patch],openai[patch]: Test nits by @ bracesproul in #6008
  • all[minor]: Add ability to disable console logs in tests by @ bracesproul in #6009
  • docs[patch]: Update installation instructions with missing packages in redis docs by @ warlockdn in #5988
  • langchain[patch]: Parent doc OOM fix (extends #5989) by @ jacoblee93 in #6012
  • core[patch]: Require explicit override for callbacks within a nested config by @ jacoblee93 in #5994
  • cohere[patch]: update embeddings and rerank by @ Anirudh31415926535 in #5928
  • community[minor]: vercel kv graph checkpointer by @ chentschel in #5948
  • cohere[minor]: Add support for tool calling cohere by @ Anirudh31415926535 in #5810
  • cohere[minor]: Release 0.2.0 by @ jacoblee93 in #6014
  • core[patch]: Release 0.2.15 by @ jacoblee93 in #6017
  • community[patch]: Release 0.2.18 by @ jacoblee93 in #6018
  • Release 0.2.9 by @ jacoblee93 in #6019

  New Contributors

  • @ a1ooha made their first contribution in #5916
  • @ yeouchien made their first contribution in #5927
  • @ itamarhaber made their first contribution in #5963
  • @ lamoglia made their first contribution in #5966
  • @ dl102306 made their first contribution in #5879
  • @ chentschel made their first contribution in #5969
  • @ zhanshuyou made their first contribution in #5983
  • @ Anirudh31415926535 made their first contribution in #5928

  Full Changelog: 0.2.8...0.2.9

• 0.2.8 - 2024-06-28
  

  What's Changed

  • create-integration[patch]: Fill placeholders in package.json by @ bracesproul in #5908
  • core[patch]: Add check for bind tools in structured prompt by @ bracesproul in #5882
  • Revert "core[patch]: Add check for bind tools in structured prompt" by @ bracesproul in #5909
  • docs[patch]: Adds diagram to installation guide by @ jacoblee93 in #5910
  • docs[patch]: Fix constructor args bug by @ bracesproul in #5911
  • docs[patch]: Add ReAct agent concept guide, search tweaks by @ jacoblee93 in #5912
  • openai[patch]: Set stream_usage to false by default for Azure by @ jacoblee93 in #5919
  • openai[patch]: Release 0.2.1 by @ jacoblee93 in #5921
  • ci[patch]: Run all integration tests daily by @ bracesproul in #5920
  • docs[patch]: Update search term by @ jacoblee93 in #5923
  • community[patch]: cheerio loader fetch headers type error by @ versole in #5905
  • community[minor],docs[minor]: Add ChromeAI chat model by @ bracesproul in #5903
  • community[patch]: Release 0.2.15 by @ bracesproul in #5924
  • langchain-aws[major]: LangChain AWS package by @ bracesproul in #5907
  • aws[patch]: Release 0.0.1 by @ bracesproul in #5925
  • langchain[minor],docs[minor]: openai formatted tools in create agent funcs by @ bracesproul in #5871
  • langchain[patch]: Release 0.2.8 by @ bracesproul in #5926

  Full Changelog: 0.2.7...0.2.8

• 0.2.7 - 2024-06-25
  

  What's Changed

  • langchain[patch]: Release 0.2.6 by @ jacoblee93 in #5859
  • anthropic[minor]: Allow passing OpenAI formatted tools by @ bracesproul in #5849
  • anthropic[patch]: Release 0.2.2 by @ bracesproul in #5860
  • groq[minor]: Update bindTools typing to include openai tools format by @ bracesproul in #5855
  • groq[patch]: Release 0.0.13 by @ bracesproul in