fix(langchain): resolve CodeQL finding - py/weak-sensitive-data-hashing

[bkaiserinfosec]

This is a fix for the GitHub Advanced Security (CodeQL) High severity finding for "Use of a broken or weak cryptographic hashing algorithm on sensitive data".

[codspeed-hq]

CodSpeed Performance Report

Merging #33383 will degrade performances by 21.21%

_{Comparing SecurityUniversalOrg:master (2c3f191) with master (b5030ba)}

⚠️ Unknown Walltime execution environment detected

Using the Walltime instrument on standard Hosted Runners will lead to inconsistent data.

For the most accurate results, we recommend using CodSpeed Macro Runners: bare-metal machines fine-tuned for performance measurement consistency.

Summary

❌ 5 regressions
✅ 8 untouched
⏩ 21 skipped¹

⚠️ Please fix the performance issues or acknowledge them on CodSpeed.

Benchmarks breakdown

	Mode	Benchmark	BASE	HEAD	Change
❌	WallTime	test_async_callbacks_in_sync	19.4 ms	24.6 ms	-21.21%
❌	WallTime	test_import_time[ChatPromptTemplate]	501.3 ms	573.9 ms	-12.65%
❌	WallTime	test_import_time[InMemoryVectorStore]	535.9 ms	596 ms	-10.07%
❌	WallTime	test_import_time[LangChainTracer]	370.7 ms	412.5 ms	-10.13%
❌	WallTime	test_import_time[PydanticOutputParser]	447 ms	510.8 ms	-12.5%

Footnotes

1. 21 benchmarks were skipped, so the baseline results were used instead. If they were deleted from the codebase, click here and archive them to remove them from the performance reports. ↩

[eyurtsev]

@bkaiserinfosec have you read the current implementation in the code together with the documentation before making this PR?