policies: add standard policy files, formatting, and secret scanning

- Add .editorconfig, .prettierrc, .prettierignore, .gitignore
- Add Makefile with fmt, fmt-check, secret-scan, test (skip) targets
- Add package.json with prettier
- Add tools/secret-scan.sh
- Add .secret-scan-allowlist for documentation token format references
- Sanitize documentation to use generic placeholders
- Auto-format with prettier
- make check passes clean

.secret-scan-allowlist

@@ -0,0 +1,8 @@
+# Documentation examples and placeholders - not real secrets
+sk-ant-oat01-YOUR_TOKEN_HERE
+sk-ant-oat01-...
+sk-ant-oat
+isOAuthToken
+# Domain references - public/documented
+www.rooh.red
+git.eeqj.de