Patch urllib3 CVEs in enforcer: bump to 2.7.0

The enforcer image pinned urllib3==2.6.3, still vulnerable to
CVE-2026-44431 (sensitive headers on cross-origin redirects) and
CVE-2026-44432 (DoS via excessive response decompression), both fixed
in 2.7.0. Companion to the krr image bump in this branch.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

Author: moshemorad

enforcer/requirements.txt

@@ -7,4 +7,4 @@ cachetools==5.3.3
 prometheus-client==0.20.0
 kubernetes==26.1.0
 pyasn1>=0.6.2
-urllib3==2.6.3
+urllib3==2.7.0