Potential fix for code scanning alert no. 89: Database query built from user-controlled sources

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: JamieSlome

src/db/mongo/pushes.js

@@ -57,6 +57,9 @@ const writeAudit = async (action) => {
   const options = { upsert: true };
   const collection = await connect(cnName);
   delete data._id;
+  if (typeof data.id !== 'string') {
+    throw new Error('Invalid id');
+  }
   await collection.updateOne({ id: { $eq: data.id } }, { $set: data }, options);
   return action;
 };