fix(api): include create secrets when resolving tags in bulk upsert

[MuzzaiyyanHussain]

Fixes a crash in bulk upsert by resolving tags for both created and updated secrets before permission checks.
fixes #5268

[maidul98]

✅ Snyk checks have passed. No issues have been found so far.

Status	Scanner	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

[greptile-apps]

Greptile Overview

Greptile Summary

Fixed a crash in the bulk upsert operation that occurred when creating new secrets with tags. The bug happened because tag resolution only included secrets being updated (secretsToUpdate) but excluded secrets being created (secretsToCreate). When the permission check later tried to resolve tag slugs for created secrets at line 2056, it would crash trying to access tagsGroupByID[i][0] for tag IDs that weren't fetched.

The fix includes both secretsToUpdate and secretsToCreate when collecting tag IDs for resolution, ensuring all referenced tags are validated and available before permission checks.

Confidence Score: 5/5

• This PR is safe to merge with minimal risk
• The fix correctly addresses a clear bug where tag IDs from created secrets weren't being fetched before permission validation, causing crashes. The change is minimal, focused, and follows the existing code patterns. No security issues, breaking changes, or edge cases identified.
• No files require special attention

Important Files Changed

Filename	Overview
backend/src/services/secret-v2-bridge/secret-v2-bridge-service.ts	Fixed crash in bulk upsert by including created secrets when resolving tags for permission checks

[MuzzaiyyanHussain]

@varonix0

[MuzzaiyyanHussain]

@scott-ray-wilson @varonix0 are you planning to merge this ?

[scott-ray-wilson]

Confirmed resolves bug, please address lint issue

[MuzzaiyyanHussain]

can you please check again, fixed the linting issue.

[scott-ray-wilson]

Still has a lint issue, you should be able to run npm run lint:fix in the backend to address this

[MuzzaiyyanHussain]

Fixed

[scott-ray-wilson]

LGTM, thanks for contributing!