feat: Phase 3 - CRUD core for Techniques, Tests and Evidence (T-014 to T-017)

- Add Pydantic schemas for Technique, Test and Evidence
- Add CRUD endpoints for Techniques (list with filters, detail, create, update, review)
- Add CRUD endpoints for Tests (create, detail, update, validate, reject)
- Add evidence upload with SHA-256 integrity and presigned download URLs
- Add MinIO/S3 storage client with bucket auto-creation on startup
- Add status_service to recalculate technique coverage from test results
- Add require_any_role RBAC dependency for multi-role authorization
- Update README with API endpoints reference and project structure

backend/app/main.py

@@ -1,9 +1,22 @@
+from contextlib import asynccontextmanager
+
 from fastapi import FastAPI
 from fastapi.middleware.cors import CORSMiddleware
 
 from app.routers import auth as auth_router
+from app.routers import techniques as techniques_router
+from app.routers import tests as tests_router
+from app.routers import evidence as evidence_router
+from app.storage import ensure_bucket_exists
 
-app = FastAPI(title="Attack Coverage Platform")
+@asynccontextmanager
+async def lifespan(app: FastAPI):
+    """Startup / shutdown logic."""
+    ensure_bucket_exists()
+    yield
+
+
+app = FastAPI(title="Attack Coverage Platform", lifespan=lifespan)
 
 # ── CORS ──────────────────────────────────────────────────────────────────
 app.add_middleware(
@@ -16,6 +29,9 @@ app.add_middleware(
 
 # ── Routers ──────────────────────────────────────────────────────────────
 app.include_router(auth_router.router, prefix="/api/v1")
+app.include_router(techniques_router.router, prefix="/api/v1")
+app.include_router(tests_router.router, prefix="/api/v1")
+app.include_router(evidence_router.router, prefix="/api/v1")
 
 
 @app.get("/health")