fix(security): SEC-619 raise minimum deployment target to iOS 17

[juwoncube]

Why

Pen test (SEC-619) flags EOL minimum OS versions in embedded frameworks of the Blood iOS app. ThunderTable declared iOS 15.0/16.0 deployment targets, which are end-of-life.

What changed

• Raised IPHONEOS_DEPLOYMENT_TARGET to 17.0 on all build configurations (framework, tests, demo app) in project.pbxproj
• Bumped MARKETING_VERSION to 2.3.1
• No Package.swift, podspec, xcconfig, or Cartfile present — no other deployment-target declarations to update

Build / test results

• xcodebuild build (ThunderTable scheme, generic/platform=iOS): BUILD SUCCEEDED
• xcodebuild test (ThunderTableTests scheme, iPhone 16 Pro simulator): TEST SUCCEEDED — 3 tests, 0 failures

New warnings

No new deprecation warnings introduced by the bump (only pre-existing, unrelated appintentsmetadataprocessor metadata notice).

Note for consumers

Consumer apps must target iOS >= 17 to adopt this version.

[semgrep-code-3sidedcube]

Semgrep found 1 ATS-consider-pinning finding:

• ThunderTableDemo/Info.plist
  • L3-47 - Triage

The application's App Transport Security (ATS) configuration does not leverage the in-built public key pinning mechanisms. The application should consider leverage ATS public key pinning to ensure that the application only communicates to serves with an allow-listed certificate (and public key). By default the device will allow connections if the default trust store (CA store) posesses the right certificates. The number of accepted Certificate Authorities by default is hundreds. Using public key pinning vastly reduces the attack surface.