#545 [API/Race] tenant_apps.py TOCTOU in set_secret and delete_secret

File: api/blueprints/v1/tenant_apps.py:913-1027. SELECT secrets_config, modify in Python, then UPDATE. Concurrent secret updates can overwrite each other (lost update problem). Dangerous because involves Vault operations. FIX: Use SELECT FOR UPDATE or JSONB operators.