identity: grant audit ledger — issue/refresh/revoke events, queryable per subject (10 tests)

audit.sx is an append-only ledger process. token.sx gains start/1(Audit)
and emits an event on every grant transition (issue, refresh, revoke —
including reuse-triggered revoke); start/0 stays unaudited so existing use
is unchanged (token.sx has no compile-time dep on the audit module, it just
sends to a pid). The ledger answers (identity/audit subject) via
audit/actions/count/all, chronological. In-memory event stream; persist
backing is a later Erlang<->persist bridge, out of scope. 111/111.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

lib/identity/conformance.sh

@@ -36,6 +36,7 @@ SUITES=(
   "sso|id-sso-test-pass|id-sso-test-count"
   "membership|id-membership-test-pass|id-membership-test-count"
   "cache|id-cache-test-pass|id-cache-test-count"
+  "audit|id-audit-test-pass|id-audit-test-count"
 )
 
 cat > "$TMPFILE" << 'EPOCHS'
@@ -54,6 +55,7 @@ cat > "$TMPFILE" << 'EPOCHS'
 (load "lib/identity/oauth.sx")
 (load "lib/identity/membership.sx")
 (load "lib/identity/cache.sx")
+(load "lib/identity/audit.sx")
 (load "lib/identity/tests/session.sx")
 (load "lib/identity/tests/token.sx")
 (load "lib/identity/tests/registry.sx")
@@ -62,6 +64,7 @@ cat > "$TMPFILE" << 'EPOCHS'
 (load "lib/identity/tests/sso.sx")
 (load "lib/identity/tests/membership.sx")
 (load "lib/identity/tests/cache.sx")
+(load "lib/identity/tests/audit.sx")
 (epoch 100)
 (eval "(list id-session-test-pass id-session-test-count)")
 (epoch 101)
@@ -78,6 +81,8 @@ cat > "$TMPFILE" << 'EPOCHS'
 (eval "(list id-membership-test-pass id-membership-test-count)")
 (epoch 107)
 (eval "(list id-cache-test-pass id-cache-test-count)")
+(epoch 108)
+(eval "(list id-audit-test-pass id-audit-test-count)")
 EPOCHS
 
 timeout 600 "$SX_SERVER" < "$TMPFILE" > "$OUTFILE" 2>&1