Operator audit log (AUDIT-01): a searchable, filterable timeline of Cairnloop.Auditor events.

The event source is the configured :cairnloop, :auditor (default Cairnloop.Auditor.Governance, which surfaces the governance ToolActionEvent trail through the Cairnloop.Governance facade). Hosts can override with their own Cairnloop.Auditor implementation.

Events are rendered through Cairnloop.Web.AuditLogPresenter — actions are humanized and metadata is only ever shown behind an explicit expander, never raw inline (brand §5.6: no raw Elixir terms / JSON to operators).