Collect an audit event when a merge request is merged with policy violations. ## Verification Steps * Switch to admin mode and set up audit event streaming * Doc: https://docs.gitlab.com/administration/compliance/audit_event_streaming/#add-a-new-http-destination * Localhost path: http://gdk.test:3000/admin/audit_logs?tab=streams * HTTP Listener: https://pipedream.com/ * Create a project * Navigate to "Secure =\> Policies =\> New policy" * Create a `Merge Request Approval` policy * Create an MR that violates the policy * Merge the MR with approval despite violations and verify an audit event is generated for the MR merged with violation in the SPP project. * Test "fail open" scenario—when MR is merged without approval, despite policy violation—and verify appropriate audit event is recorded