fix: Spiffe URI trust domain rename

[saucam]

Summary

---

Type of change

• Bug fix (non-breaking change which fixes an issue)
• Chore (refactoring code, technical debt, workflow improvements)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Refactor (does not change functionality, e.g. code style improvements, linting)
• This change requires a documentation update

---

Testing

• Manually tested
• Unit tests added/updated
• No tests required

---

Impact / Risks

---

📸 Screenshots / Logs (if applicable)

---

[gemini-code-assist]

Code Review

This pull request updates the wimse_domain from zeroid.dev to highflame.ai in both config.go and zeroid.yaml. The review feedback highlights that the domain change is incomplete, as related fields like token.issuer and token.base_url still reference the old domain, which could lead to inconsistencies in SPIFFE identity issuance and OIDC federation.

[gemini-code-assist]

The trust domain is being renamed to highflame.ai, but the default token.issuer and token.base_url (lines 184-185) still reference zeroid.dev. To ensure consistency in SPIFFE identity issuance and discovery, these values should likely be updated to match the new domain as well.

[gemini-code-assist]

The wimse_domain has been updated to highflame.ai, but the token.issuer on line 28 still points to https://auth.zeroid.dev. These should be kept in sync to avoid potential issues with SPIFFE ID validation and OIDC federation where the trust domain and issuer are expected to be aligned.