fix: Widen cryptography dependency to >=44.0.0,<47.0.0 for CVE-2026-26007

The cryptography package was pinned to <45.0.0 due to upstream key loading
regressions in 45.0.0 (pyca/cryptography#12958, #13126, #13196). Those
regressions were fixed in 45.0.2+, and the pin now blocks the fix for
CVE-2026-26007 (fixed in 46.0.5).

Widen the constraint to <47.0.0 so the resolver picks up 46.0.6 (latest)
which includes the CVE fix.

Co-Authored-By: bot_apk <apk@cognition.ai>

Author: devin-ai-integration[bot]