Fix CI failures: gitleaks path pattern and code formatting

Fixed two CI failures blocking PR #43:

1. Gitleaks false positives:
   - Changed path pattern from '/tests/' to 'tests/' (no leading slash)
   - File paths in gitleaks are relative to repo root without leading slash
   - Now correctly excludes all test files with placeholder secrets

2. Code formatting (ruff):
   - Auto-formatted test and view files to use modern Django patterns
   - Changed request.META["HTTP_*"] to request.headers.get()
   - Consolidated multi-line function calls where appropriate

Verified locally:
- gitleaks detect: PASS (no leaks found)
- make lint: PASS
- make type-check: PASS

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>

Author: mithro

.gitleaks.toml

@@ -22,7 +22,7 @@ paths = [
     '''\.github/workflows/ci\.yml$''',  # CI workflow has example connection strings
     '''deployment/scripts/''',           # Deployment scripts that generate secrets (not contain them)
     '''\.gitleaks\.toml$''',             # This config file contains example patterns
-    '''/tests/''',                       # All test files (browser tests, unit tests with test fixtures)
+    '''tests/''',                        # All test files (browser tests, unit tests with test fixtures)
 ]
 
 # Common patterns for test files with fake credentials

wafer_space/projects/tests/test_views_compliance.py

@@ -351,9 +351,7 @@ def test_post_captures_user_agent(self):
 
         # Set HTTP_USER_AGENT
         response = self.client.post(
-            url,
-            data=form_data,
-            HTTP_USER_AGENT="Mozilla/5.0 Test Browser",
+            url, data=form_data, headers={"user-agent": "Mozilla/5.0 Test Browser"}
         )
 
         assert response.status_code == HTTP_FOUND
@@ -392,7 +390,7 @@ def test_post_updates_existing_certification(self):
             url,
             data=form_data,
             REMOTE_ADDR="203.0.113.195",
-            HTTP_USER_AGENT="New Browser",
+            headers={"user-agent": "New Browser"},
         )
 
         assert response.status_code == HTTP_FOUND

wafer_space/projects/views_compliance.py

@@ -23,7 +23,7 @@ def get_client_ip(request):
     Returns:
         str: Validated IP address or None if invalid
     """
-    x_forwarded_for = request.META.get("HTTP_X_FORWARDED_FOR")
+    x_forwarded_for = request.headers.get("x-forwarded-for")
     if x_forwarded_for:
         # Get first IP from comma-separated list
         potential_ip = x_forwarded_for.split(",")[0].strip()
@@ -97,7 +97,7 @@ def compliance_certification_create(request, pk):
 
             # Capture IP address and user agent
             certification.ip_address = get_client_ip(request)
-            certification.user_agent = request.META.get("HTTP_USER_AGENT", "")
+            certification.user_agent = request.headers.get("user-agent", "")
             certification.save()
 
             messages.success(