fix(deps): upgrade 6 vulnerable transitive dependencies (#134)

* fix(deps): upgrade vulnerable transitive dependencies

Upgrades 6 packages with known security advisories:
- authlib 1.6.11 → 1.7.2 (PYSEC-2026-188)
- cryptography 46.0.7 → 49.0.0 (GHSA-537c-gmf6-5ccf)
- idna 3.11 → 3.18 (PYSEC-2026-215)
- pydantic-settings 2.13.1 → 2.14.2 (GHSA-4xgf-cpjx-pc3j)
- pyjwt 2.12.1 → 2.13.0 (PYSEC-2026-175/176/177/178/179)
- python-multipart 0.0.26 → 0.0.32 (CVE-2026-42561/53538/53539/53540)

Verified clean with pip-audit after upgrade.

* chore: remove requirements.txt files and reqs Makefile target

Switch fully to uv-managed lockfile; pip-compiled requirements files
are no longer needed.

Author: luarss

Makefile

@@ -9,14 +9,6 @@ IMAGE_NAME:= ghcr.io/the-openroad-project/openroad-mcp
 sync:
 	@uv sync --all-extras --inexact
 
-.PHONY: reqs
-reqs:
-	@rm -f requirements.txt
-	@rm -f requirements-test.txt
-	@uv sync --all-extras --inexact  --upgrade
-	@uv pip compile --output-file=requirements.txt pyproject.toml --upgrade
-	@uv pip compile --output-file=requirements-test.txt pyproject.toml --extra dev  --upgrade
-
 .PHONY: format
 format:
 	@uv run ruff format .