fix(python): update web3 version constraint to allow security patch

[Kubudak90]

Summary

Updates the web3 dependency version constraint to allow the security patch that fixes CCIP Read SSRF vulnerability (GHSA-5hr4-253g-cpx2).

Changes

• Changed web3 version constraint from >=7.6.0,<=7.10.0 to >=7.6.0,<8.0.0
• This allows web3>=7.15.0 which contains the security fix

Security Impact

The current pin (<=7.10.0) blocks the security fix for GHSA-5hr4-253g-cpx2 which was released in web3==7.15.0 on April 2, 2026. This PR resolves the version conflict while maintaining compatibility.

Related Issue

Fixes #636

Testing

• Verify web3 7.15.0+ installs correctly
• Run existing test suite to ensure compatibility

[cb-heimdall]

🟡 Heimdall Review Status

Requirement	Status	More Info
Reviews	🟡 0/1	Denominator calculation Show calculation 1 if user is bot 0 1 if user is external 0 2 if repo is sensitive 0 From .codeflow.yml 1 Additional review requirements Show calculation Max 0 0 From CODEOWNERS 0 Global minimum 0 Max 1 1 1 if commit is unverified 1 Sum 2