#683 SEC-03: Artifact download endpoint lacks authentication

Location: api/blueprints/v1/artifacts.py:260. Issue: Artifacts can be downloaded by anyone who knows the SHA-256 hash. Hash values may leak via logs or API responses. Fix: Add @require_permission decorator OR implement signed URLs with expiration.