Enforce Append-Only Conversations

# Ticket: Enforce Append-Only Conversations

## Description,
To improve data integrity and auditability, conversations must be **append-only**.
This means once a conversation message is created, it cannot be modified.
Any API endpoints or internal logic that allows updating existing conversation messages must be removed or disabled.

## Acceptance Criteria / TODOs

### Backend Changes

- [ ] **Remove Update Endpoint**:
    - [ ] Remove the `PUT /api/conversation/:uuid/message` route configuration in [src/controller/conversation.controller/index.js](cci:7://file:///Users/drocca/development/cve/cve-services/src/controller/conversation.controller/index.js:0:0-0:0).
    - [ ] Remove the [updateMessage](cci:1://file:///Users/drocca/development/cve/cve-services/src/controller/conversation.controller/conversation.controller.js:83:0-94:1) function in [src/controller/conversation.controller/conversation.controller.js](cci:7://file:///Users/drocca/development/cve/cve-services/src/controller/conversation.controller/conversation.controller.js:0:0-0:0).

- [ ] **Refactor Repository Layer**:
    - [ ] Remove the [updateConversation](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:49:2-57:3) method from [src/repositories/conversationRepository.js](cci:7://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:0:0-0:0).
    - [ ] Update [processConversationHistory](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:59:2-81:3) in [src/repositories/conversationRepository.js](cci:7://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:0:0-0:0):
        - [ ] Identify where it calls [updateConversation](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:49:2-57:3) (currently when a conversation [UUID](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/baseOrgRepository.js:113:2-126:3) is present).
        - [ ] Change logic to strictly **ignore** or **throw an error** if an update is attempted.
        - [ ] Ensure it *only* calls [createConversation](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:42:2-47:3) for new entries.

- [ ] **Verify Dependencies**:
    - [ ] Search the codebase for any other references to [updateConversation](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:49:2-57:3) or the PUT endpoint to ensure no other flows rely on modifying messages.

### Testing
- [ ] **Verify API**:
    - [ ] Attempting to call `PUT /api/conversation/:uuid/message` should return a 404 Not Found.
- [ ] **Verify Logic**:
    - [ ] Existing flows that might trigger [processConversationHistory](cci:1://file:///Users/drocca/development/cve/cve-services/src/repositories/conversationRepository.js:59:2-81:3) (like [updateOrg](cci:1://file:///Users/drocca/development/cve/cve-services/src/controller/registry-org.controller/registry-org.controller.js:206:0-331:1) with conversation data) should still work for *new* messages but must not update old ones.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Enforce Append-Only Conversations #1604

Ticket: Enforce Append-Only Conversations

Description,

Acceptance Criteria / TODOs

Backend Changes

Testing

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Enforce Append-Only Conversations #1604

Description

Ticket: Enforce Append-Only Conversations

Description,

Acceptance Criteria / TODOs

Backend Changes

Testing

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions