feat: implement AuditRepository for security audit log persistence

[Aureliolo]

Summary

The AuditLog exists in-memory (security/audit.py) but has no persistence via the PersistenceBackend. An AuditRepository protocol is planned.

Design Spec Reference

• §7.6 Entities Persisted table — Audit entries row (planned M7)

Scope

• AuditRepository protocol definition
• SQLite implementation
• Integration with PersistenceBackend protocol
• Queries: by agent, by action type, time range

[coderabbitai]

⚠️ Possible Duplicate Issue(s)

• Implement pluggable PersistenceBackend protocol with SQLite backend (DESIGN_SPEC §7.5) #36

---

📝 Issue Planner

_{Check the box below or use the @coderabbitai plan command to generate an implementation plan and prompts that you can use with your favorite coding assistant.}

• Create Plan

---

🧪 Issue enrichment is currently in open beta.

You can configure auto-planning by selecting labels in the issue_enrichment configuration.

To disable automatic issue enrichment, add the following to your .coderabbit.yaml:

issue_enrichment:
  auto_enrich:
    enabled: false

💬 Have feedback or questions? Drop into our discord!