refactor: remove redundant allowRfc2544BenchmarkRange from trusted policy

As pointed out by Greptile, dangerouslyAllowPrivateNetwork: true already
permits all private network addresses including RFC 2544 range. The
allowRfc2544BenchmarkRange flag has no effect when skipPrivateNetworkChecks
is true, so it's dead code that could mislead readers.

src/agents/tools/web-guarded-fetch.ts

@@ -7,7 +7,6 @@ import type { SsrFPolicy } from "../../infra/net/ssrf.js";
 
 const WEB_TOOLS_TRUSTED_NETWORK_SSRF_POLICY: SsrFPolicy = {
   dangerouslyAllowPrivateNetwork: true,
-  allowRfc2544BenchmarkRange: true,
 };
 
 type WebToolGuardedFetchOptions = Omit<GuardedFetchOptions, "proxy"> & {