feat: Initialize Zastava Webhook service with TLS and Authority authentication

- Added Program.cs to set up the web application with Serilog for logging, health check endpoints, and a placeholder admission endpoint.
- Configured Kestrel server to use TLS 1.3 and handle client certificates appropriately.
- Created StellaOps.Zastava.Webhook.csproj with necessary dependencies including Serilog and Polly.
- Documented tasks in TASKS.md for the Zastava Webhook project, outlining current work and exit criteria for each task.

etc/notify.dev.yaml

@@ -0,0 +1,43 @@
+# Notify WebService configuration — development
+
+storage:
+  driver: mongo
+  connectionString: "mongodb://notify-mongo.dev.svc.cluster.local:27017"
+  database: "stellaops_notify_dev"
+  commandTimeoutSeconds: 30
+
+authority:
+  enabled: true
+  issuer: "https://authority.dev.stella-ops.local"
+  metadataAddress: "https://authority.dev.stella-ops.local/.well-known/openid-configuration"
+  requireHttpsMetadata: false
+  allowAnonymousFallback: false
+  backchannelTimeoutSeconds: 30
+  tokenClockSkewSeconds: 60
+  audiences:
+    - notify.dev
+  readScope: notify.read
+  adminScope: notify.admin
+
+api:
+  basePath: "/api/v1/notify"
+  internalBasePath: "/internal/notify"
+  tenantHeader: "X-StellaOps-Tenant"
+
+plugins:
+  baseDirectory: "../"
+  directory: "plugins/notify"
+  searchPatterns:
+    - "StellaOps.Notify.Connectors.*.dll"
+  orderedPlugins:
+    - StellaOps.Notify.Connectors.Slack
+    - StellaOps.Notify.Connectors.Teams
+    - StellaOps.Notify.Connectors.Email
+    - StellaOps.Notify.Connectors.Webhook
+
+telemetry:
+  enableRequestLogging: true
+  minimumLogLevel: Debug
+
+# Development override: when the Authority service is not available, set
+# authority.enabled: false and authority.developmentSigningKey to a 32+ byte secret.