security(deps): harden all remaining examples — exact pins, lockfiles, audit clean

Node.js (17 examples): pnpm-lock.yaml generated, all ^ and ~ ranges replaced
with exact versions, packageManager@10.30.3 pinned, .npmrc save-exact=true added.

Vulnerabilities found and fixed:
- 090-expo: 7 HIGH CVEs (tar <7.5.11, @xmldom/xmldom <0.8.12 via expo-cli)
  Fixed via pnpm.overrides: tar@7.5.13, @xmldom/xmldom@0.9.9
- 110-cloudflare: 2 HIGH CVEs (undici <6.24.0 via wrangler)
  Fixed by upgrading wrangler 3.x -> 4.80.0
- 230-n8n: 1 HIGH CVE (lodash code injection via n8n-workflow)
  Fixed via pnpm.overrides: lodash@4.18.1

Python (11 examples): all >= and ~= ranges replaced with exact == pins
resolved from fresh Python 3.11 venv installs. All pip-audit clean.

Instructions:
- engineer.md: add hard rule — partner integrations must route audio through
  the partner's interface, not bypass it with a raw DeepgramClient(). No raw
  ws/fetch for audio. Tests must exercise the partner interface.
- lead-review.md: add bypass check and raw protocol check to Step 4 integration
  genuineness check. Update Node test commands to use pnpm/bun/deno.

Author: lukeocodes

examples/010-getting-started-node/.npmrc

@@ -0,0 +1 @@
+save-exact=true

examples/010-getting-started-node/package.json

@@ -3,13 +3,14 @@
   "version": "1.0.0",
   "description": "Transcribe audio from a URL using the Deepgram JavaScript SDK",
   "main": "src/index.js",
+  "packageManager": "pnpm@10.30.3",
   "scripts": {
     "start": "node src/index.js",
     "test": "node tests/test.js"
   },
   "dependencies": {
-    "@deepgram/sdk": "^5.0.0",
-    "dotenv": "^16.4.0"
+    "@deepgram/sdk": "5.0.0",
+    "dotenv": "16.6.1"
   },
   "engines": {
     "node": ">=18"

examples/010-getting-started-node/pnpm-lock.yaml

@@ -0,0 +1 @@
+save-exact=true

examples/020-twilio-media-streams-node/.npmrc

@@ -3,17 +3,18 @@
   "version": "1.0.0",
   "description": "Transcribe Twilio phone calls in real-time using Deepgram live STT",
   "main": "src/index.js",
+  "packageManager": "pnpm@10.30.3",
   "scripts": {
     "start": "node src/index.js",
     "test": "node tests/test.js"
   },
   "dependencies": {
-    "@deepgram/sdk": "^5.0.0",
-    "dotenv": "^16.4.0",
-    "express": "^4.21.0",
-    "express-ws": "^5.0.2",
-    "twilio": "^5.4.0",
-    "ws": "^8.18.0"
+    "@deepgram/sdk": "5.0.0",
+    "dotenv": "16.6.1",
+    "express": "4.22.1",
+    "express-ws": "5.0.2",
+    "twilio": "5.13.1",
+    "ws": "8.20.0"
   },
   "engines": {
     "node": ">=18"