Fix VoicePrint auth bypass & audio upload (FRE-5003)

P1-2: Add onRequest auth hook to reject anonymous requests on all 7
VoicePrint endpoints. Previously, the auth middleware always attached
a placeholder user (id='anonymous'), so per-route userId checks passed
for unauthenticated clients.

P1-3: Replace JSON body parsing with @fastify/multipart for POST
/endpoints (/enroll, /analyze, /batch). Fastify JSON parser cannot
produce Buffer from request.body; multipart/form-data is required
for audio file uploads. Added 50MB file size limit.

packages/api/package.json

@@ -12,19 +12,20 @@
   "dependencies": {
     "@fastify/cors": "^10.0.1",
     "@fastify/helmet": "^13.0.1",
+    "@fastify/multipart": "^7.7.3",
     "@fastify/rate-limit": "^9.0.0",
     "@fastify/sensible": "^6.0.1",
-    "@shieldai/db": "workspace:*",
-    "@shieldai/types": "workspace:*",
     "@shieldai/correlation": "workspace:*",
-    "@shieldai/report": "workspace:*",
-    "fastify": "^5.2.0",
     "@shieldai/darkwatch": "workspace:*",
+    "@shieldai/db": "workspace:*",
+    "@shieldai/monitoring": "workspace:*",
+    "@shieldai/report": "workspace:*",
+    "@shieldai/types": "workspace:*",
     "@shieldai/voiceprint": "workspace:*",
-    "@shieldai/monitoring": "workspace:*"
+    "fastify": "^5.2.0"
   },
   "devDependencies": {
-    "vitest": "^4.1.5",
-    "@vitest/coverage-v8": "^4.1.5"
+    "@vitest/coverage-v8": "^4.1.5",
+    "vitest": "^4.1.5"
   }
 }