build(deps): bump cryptography from 46.0.6 to 46.0.7 in /jobs/async-upload

[dependabot]

Bumps cryptography from 46.0.6 to 46.0.7.

Changelog

Sourced from cryptography's changelog.

46.0.7 - 2026-04-07

* **SECURITY ISSUE**: Fixed an issue where non-contiguous buffers could be
  passed to APIs that accept Python buffers, which could lead to buffer
  overflow. **CVE-2026-39892**
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.6.
.. _v46-0-6:

Commits

• 622d672 46.0.7 release (#14602)
• See full diff in compare view

[jonburdo]

cryptography is a transitive dependency through model-registry[signing] used for signing models

a micro/patch version bump

$ poetry show cryptography
 name         : cryptography                                                                                        
 version      : 46.0.7                                                                                              
 description  : cryptography is a package which provides cryptographic recipes and primitives to Python developers. 

dependencies
 - cffi >=2.0.0

required by
 - pyopenssl requires >=46.0.0,<47
 - rfc3161-client requires >=43,<47
 - rh-model-signing requires *
 - sigstore requires >=42,<47

/lgtm
/approve

[google-oss-prow]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: jonburdo

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [jonburdo]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment