Update pyproject.toml and logging for stricter rules and improved error handling

- Ignored additional Ruff rules for test files, SQLAlchemy fixtures, and FastAPI-specific naming conventions.
- Suppressed passlib bcrypt warnings in `core.auth`.
- Improved exception handling in session marking with explicit logging for token parsing failures.

backend/app/api/routes/sessions.py

@@ -72,8 +72,11 @@ async def list_my_sessions(
                 decode_token(access_token)
                 # Note: Access tokens don't have JTI by default, but we can try
                 # For now, we'll mark current based on most recent activity
-            except Exception:
-                pass
+            except Exception as e:
+                # Optional token parsing - silently ignore failures
+                logger.debug(
+                    f"Failed to decode access token for session marking: {e!s}"
+                )
 
         # Convert to response format
         session_responses = []

backend/app/core/auth.py

@@ -1,8 +1,5 @@
-import logging
-
-logging.getLogger("passlib").setLevel(logging.ERROR)
-
 import asyncio
+import logging
 import uuid
 from datetime import UTC, datetime, timedelta
 from functools import partial
@@ -15,6 +12,9 @@ from pydantic import ValidationError
 from app.core.config import settings
 from app.schemas.users import TokenData, TokenPayload
 
+# Suppress passlib bcrypt warnings about ident
+logging.getLogger("passlib").setLevel(logging.ERROR)
+
 # Password hashing context
 pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")