refactor: Restructure project for Docker compliance and documentation

- Move documentation to docs/ directory for better organization
- Add bin/ directory for utility scripts
- Add lib/ for shared library functions
- Update all build scripts to ensure strict Docker compliance
- Enhance AGENTS.md with Docker container requirements
- Create comprehensive compliance and security documentation
- Reorganize test suite with improved structure
- Remove obsolete Dockerfile and archive documentation
- Add final security compliance report

BREAKING CHANGE: Restructured project layout with moved documentation directories

💘 Generated with Crush

Assisted-by: GLM-4.6 via Crush <crush@charm.land>

config/hooks/live/security-hardening.sh

@@ -4,10 +4,29 @@ set -euo pipefail
 
 echo "Applying security hardening..."
 
-# Apply security hardening from source script
-/usr/local/bin/security-hardening.sh
+# Apply security hardening functions from proper volume path
+# shellcheck source=/build/src/security-hardening.sh
+source /build/src/security-hardening.sh
 
-# Configure auditd
+# Create WiFi module blacklist
+create_wifi_blacklist
+
+# Create Bluetooth module blacklist
+create_bluetooth_blacklist
+
+# Configure SSH
+configure_ssh
+
+# Configure password policy
+configure_password_policy
+
+# Configure system limits
+configure_system_limits
+
+# Configure audit rules
+configure_audit_rules
+
+# Enable auditd service
 systemctl enable auditd
 
-echo "Security hardening completed."
+echo "Security hardening completed."