feat(execpolicy): add typed permission rules and config schema

[greyfreedom]

Rebased replacement for #1189 on current main after the v0.8.41 CodeWhale rebrand.

Summary

• Add typed persistent permission rules with allow, deny, and ask decisions.
• Support exec_shell command-prefix matching and workspace-relative path glob matching.
• Preserve compatibility with existing auto_allow / auto_deny config lists.
• Reuse the existing execpolicy ruleset layering and bash arity matching.
• Harden path matching with normalized paths and globset for glob evaluation.

Validation

• cargo fmt --all
• cargo test -p codewhale-execpolicy -p codewhale-config -p codewhale-app-server -p codewhale-cli --all-features
• cargo test -p codewhale-tui pandoc_convert_rejects_inline_request_for_binary_format --all-features
• cargo test -p codewhale-tui execute_rejects_absolute_path --all-features
• cargo test -p codewhale-tui tasks_panel_collapses_stale_running_tool_rows --all-features
• cargo clippy -p codewhale-execpolicy -p codewhale-config -p codewhale-app-server -p codewhale-cli --all-targets --all-features -- -D warnings

[gemini-code-assist]

Code Review

This pull request implements a granular tool permission system, introducing typed rules for tool names, command prefixes, and path globs while maintaining legacy compatibility. Feedback focuses on performance optimizations for rule resolution and glob matching, refining denial logic to prevent over-blocking, and improving configuration merging to allow overriding global lists with empty ones.