765bdf9f9e
Replace was previously accepted from anyone with a relationship to the project: jury (assignment), mentor (mentorAssignment), or team member. That allowed jurors and mentors to swap a team's submission, with the attacker-supplied bucket+objectKey pointing at any object they had uploaded elsewhere. Now only admins and the team itself (submitter or TeamMember) can replace files. Jurors and mentors remain read-only on submissions. The legitimate UI flow (team-lead replacing files from the applicant dashboard) is unaffected. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>