chore: release v1.1.1 (#2831)

* chore: release v1.1.1

* chore: updating deps (#2832) (#2833)

Mapper/DIRE robustness hardening, SNMP enrichment rule improvements, …

…topology projection fixes, and device enrollment profile updates.

**1.1.1**
- Added SNMP fingerprint normalization and rule-driven enrichment improvements for vendor/type/model inference, including Ubiquiti-specific router/switch/AP detection refinements.
- Improved DIRE ingest behavior for duplicate-IP/device identity handling and strengthened test coverage for bulk upsert conflict recovery paths.
- Fixed Apache AGE topology projection compatibility issues and improved mapper interface/link graph ingestion reliability.
- Added robust tests for mapper topology confidence handling, stale-link pruning, and idempotent link updates.
- Improved device enrollment profile behavior and related platform integration paths for more consistent onboarding outcomes.

DIRE device deduplication fixes, OpenTelemetry tracing, and gateway h…

…ardening.

**1.1.0**
- Fixed DIRE agent deduplication: `agent_id` is now registered in `device_identifiers` during both agent enrollment (`AgentGatewaySync`) and sync ingestion (`SyncIngestor`), preventing duplicate devices when agents restart with new IPs.
- Data cleanup migration consolidates duplicate agent devices (e.g. 37+ k8s-agent records) into a single canonical device and backfills missing `agent_id` identifiers.
- Fixed mapper interface ingestion: `lookup_device_uids_by_ip` now prefers `sr:` device UIDs when multiple devices share an IP, preventing interfaces from being assigned to the wrong device.
- Fixed binary UUID conversion in DIRE identity reconciler to prevent crashes during device resolution.
- Added OpenTelemetry tracing support for Elixir applications with trace summary refresh.
- Hardened gateway proxy authentication and authorization checks.
- Fixed sweep processor availability checks and missing sweep group ID handling.
- Fixed GRPC channel restart logic (`restart_channel/3`) for agent gateway connections.
- Fixed OTEL trace summary materialized view refresh failures.

Release v1.0.92

Docker compose stability fixes for agent enrollment and core-elx builds.

**1.0.91**
- Docker compose agent now resolves the gateway consistently via `agent-gateway.serviceradar`, preventing enrollment failures.
- Core-elx Docker build includes the Rust workspace and updated toolchain so SRQL NIFs compile reliably.
- Startup migrations now set the database search_path before running and avoid changing ownership on AGE sequences owned by tables.

Netflow visibility and log-to-event promotion are now live.

**1.0.90**
- Netflow ingestion and flow observability pipeline are enabled.
- Log promotion rules now generate OCSF events for analytics and alerting.

Edge onboarding gateway defaults and mTLS SNI fixes.

**1.0.89**
- Edge onboarding bundles now derive gateway addresses from the base site URL (e.g., demo.serviceradar.cloud -> demo-gw.serviceradar.cloud:50052).
- Gateway TLS server_name defaults to serviceradar-agent-gateway to match the gateway certificate and avoid mTLS SNI failures.

WASM plugin runtime fix for TinyGo-compiled plugins.

**1.0.88**
- Fixed WASI clock_time_get nil pointer crash when TinyGo plugins call time.Now(). The issue was caused by TinyGo's _start function calling proc_exit(0), which closed the module and cleared the Sys context before the plugin entrypoint could run.
- Module config now uses WithStartFunctions() to disable automatic _start execution, keeping WASI clock functions operational.

Database connectivity and AGE graph permission fixes.

**1.0.87**
- Fixed PostgreSQL search_path configuration that caused "relation does not exist" errors for device tables. The search_path was incorrectly stored as a single quoted identifier instead of separate schema names.
- Added auto-detection and correction of misconfigured search_path on startup migrations.
- Fixed Apache AGE graph schema privileges so the app role can execute Cypher queries for interface topology.

Docker startup reliability and TLS infrastructure improvements.

**1.0.86**
- Fixed Postgrex type compilation for Bazel builds (removed defmodule wrapper around Postgrex.Types.define/3).
- Startup migrations now sync Ecto schema_migrations to Ash ash_schema_migrations, fixing 503 errors after DB migrations complete.
- Wildcard TLS certificate infrastructure added for serviceradar.cloud subdomains, avoiding Let's Encrypt rate limits on namespace recreation.
- Helm ingress template now supports default SSL cert fallback when secretName is empty.
- Startup migrations refactored to satisfy Credo complexity rules.