docs(lab1): add OWASP Juice Shop triage report

[ellilin]

Complete triage report for OWASP Juice Shop deployment including:

• Scope & Asset information (v19.0.0)
• Environment details (macOS, Docker 28.3.3)
• Deployment verification with health checks
• Surface snapshot analysis
• Top 3 security risks identified
• PR template setup documentation
• GitHub community engagement section

Goal

Complete Lab 1: Setup OWASP Juice Shop & PR Workflow. This submission includes:

• OWASP Juice Shop v19.0.0 deployment using Docker
• Comprehensive triage report with security analysis
• PR template for standardizing lab submissions
• GitHub community engagement (stars and follows)

Changes

• Added: .github/pull_request_template.md on main branch with standardized PR template
• Added: labs/submission1.md with complete triage report
• Added: Screenshots in labs/assets/ documenting deployment
• Deployed: OWASP Juice Shop v19.0.0 locally on port 3000

Testing

• Deployment verification: Container running on 127.0.0.1:3000
• API health check: /api/Products endpoint returns {"status":"success"}
• Browser access: Homepage loads successfully with product listings
• Security headers analysis: Documented missing CSP and HSTS headers
• Network exposure: Confirmed bound to localhost only

Artifacts & Screenshots

• Triage report: labs/submission1.md
• Screenshots: labs/assets/page_load.png, labs/assets/curl_api_products.jpg
• API output: Embedded in submission (first 500 chars of /api/Products response)
• Security headers: Documented in triage report

---

Checklist

• Clear title following conventional commits (e.g., feat:, fix:, docs:)
• Documentation updated if needed
• No secrets or large temporary files included