CCM-12939 event audit pipeline (#368)

* workflow

* Enable firehose

* Status updates for sub

* override fast-xml-parser

* add bucket to eventsub outputs

* add schedule

* review changes

* moved s3 policy documents to module

* terraform format

Fix poetry cryptography vulnerability (#407)

CCM-14510 Fix Test and TF Make Targets (#397)

Co-authored-by: Mark Slowey <113013138+masl2@users.noreply.github.com>

Combined Dependabot PRs (#395)

* Bump peter-evans/create-pull-request from 7.0.8 to 8.1.0

Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 7.0.8 to 8.1.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v7.0.8...v8.1.0)

---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
  dependency-version: 8.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump asdf-vm/actions from 4.0.0 to 4.0.1

Bumps [asdf-vm/actions](https://github.com/asdf-vm/actions) from 4.0.0 to 4.0.1.
- [Release notes](https://github.com/asdf-vm/actions/releases)
- [Changelog](https://github.com/asdf-vm/actions/blob/master/CHANGELOG.md)
- [Commits](asdf-vm/actions@1902764...b7bcd02)

---
updated-dependencies:
- dependency-name: asdf-vm/actions
  dependency-version: 4.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump github/codeql-action from 4.31.10 to 4.32.2

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.10 to 4.32.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@cdefb33...45cbd0c)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump @stylistic/eslint-plugin from 3.1.0 to 5.7.1

Bumps [@stylistic/eslint-plugin](https://github.com/eslint-stylistic/eslint-stylistic/tree/HEAD/packages/eslint-plugin) from 3.1.0 to 5.7.1.
- [Release notes](https://github.com/eslint-stylistic/eslint-stylistic/releases)
- [Changelog](https://github.com/eslint-stylistic/eslint-stylistic/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint-stylistic/eslint-stylistic/commits/v5.7.1/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@stylistic/eslint-plugin"
  dependency-version: 5.7.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump @types/node from 22.19.7 to 25.2.1

Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.19.7 to 25.2.1.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

---
updated-dependencies:
- dependency-name: "@types/node"
  dependency-version: 25.2.1
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump @aws-sdk/client-lambda from 3.981.0 to 3.984.0

Bumps [@aws-sdk/client-lambda](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-lambda) from 3.981.0 to 3.984.0.
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-lambda/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.984.0/clients/client-lambda)

---
updated-dependencies:
- dependency-name: "@aws-sdk/client-lambda"
  dependency-version: 3.984.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* esbuild version

* sdk versions

* pino version

* missed internal pino version

* upload artifact v6

* event schema version bump

* lock

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Mark Slowey <mark.slowey1@nhs.net>

squash and sign (#340)

CDS Print: Performance Tweaks (#388)

* performance tweaks

* lock and audit fix

Signed tag for commit 1b98373

CCM-12183 Component test for letter PDF (#367)

* Added tests for letter PDF

* Fixed linting error

* Modified tests

* test ssh-sign

* lint fix

Signed-off-by: namitha.prabhu <namitha.prabhu2@nhs.net>

* added comments for response.url

Signed-off-by: namitha.prabhu <namitha.prabhu2@nhs.net>

* lint

Signed-off-by: namitha.prabhu <namitha.prabhu2@nhs.net>

* fix

Signed-off-by: namitha.prabhu <namitha.prabhu2@nhs.net>

---------

Signed-off-by: namitha.prabhu <namitha.prabhu2@nhs.net>
Co-authored-by: namitha.prabhu <namitha.prabhu2@nhs.net>

CCM-13188: run producer pact tests (#372)

* init

* update examples

* init

* whitespace fix

* fmt fix

* add spec id to PENDING

* rm override

* add typecheck

* add cleanup utils

* add lint

* skip unit tests

* use install helper

* revert run-pact-test

* add NODE_AUTH_TOKEN

* rm PACKAGES_TOKEN

* fast xml parser cve override

* lockfile

update-status