Implement code auditing in CI pipelines for all repositories

[j-chmielewski]

Introduce automated code auditing into our CI pipelines to help catch known software vulnerabilities early in the development cycle.

• Add cargo audit step for Rust dependencies.
• Add pnpm audit step for Node/JS/TS dependencies.
• Ensure both commands run as part of the CI checks
• Fail the pipeline if vulnerabilities of certain severity are detected (to be defined).
• Allow overrides or ignore lists (e.g., via audit.toml) if necessary to handle known issues.

Future Considerations:

• Explore deeper static analysis tools
• Add dependency update policies or alerts (e.g., via Dependabot).

Keep the initial implementation lightweight and non-disruptive.

[Rusty-Weasel]

push it, we need secure solutions

[Rusty-Weasel]

still open? push it

[j-chmielewski]

This was done a while ago, the issue was forgotten in a limbo state.
Core, Proxy and Client use cargo-deny and pnpm audit
Gateway uses cargo-deny only since it doesn't have a frontend.