Backend hardening: structured logging, timeouts, memory leak fixes, compression, XSS fix

- Add pino structured logging with request IDs (X-Request-Id header)
- Add 30s timeout to acquirePage() and renderPdf/renderUrlPdf
- Add verification cache cleanup (every 15min) and rate limit cleanup (every 60s)
- Read version from package.json in health endpoint
- Add compression middleware
- Escape currency in templates (XSS fix)
- Add static asset caching (1h maxAge)
- Remove deprecated docker-compose version field
- Replace all console.log/error with pino logger

src/routes/templates.ts

@@ -1,5 +1,6 @@
 import { Router, Request, Response } from "express";
 import { renderPdf } from "../services/browser.js";
+import logger from "../services/logger.js";
 import { templates, renderTemplate } from "../services/templates.js";
 
 export const templatesRouter = Router();
@@ -37,7 +38,7 @@ templatesRouter.post("/:id/render", async (req: Request, res: Response) => {
     res.setHeader("Content-Disposition", `inline; filename="${filename}"`);
     res.send(pdf);
   } catch (err: any) {
-    console.error("Template render error:", err);
+    logger.error({ err }, "Template render error");
     res.status(500).json({ error: "Template rendering failed", detail: err.message });
   }
 });