feat(local): warn users before executing commands on their machine

[aulorbe]

Summary

• Replaces the openclaw-only local installation warning with a universal warning that applies to all agents spawned locally
• Presents users with a 3-option selector before proceeding:
  • Ok — execute directly on this machine (no change in behavior)
  • Sandbox — inject --beta sandbox so the agent runs inside a Docker container instead of on the host
  • Cancel — abort the operation
• Warning is skipped when sandbox mode is already active or in non-interactive/headless mode (SPAWN_NON_INTERACTIVE=1)
• When "Sandbox" is selected, SPAWN_BETA env var is updated before agent/runner resolution so the Docker-wrapped runner is used correctly

Test plan

• biome lint — 203 files, 0 issues
• biome check — formatting clean
• Build compiles without errors
• 97 orchestrate/sandbox tests pass
• Manual: spawn <agent> local shows warning with Ok/Sandbox/Cancel
• Manual: selecting Ok proceeds normally
• Manual: selecting Sandbox enables Docker container mode
• Manual: selecting Cancel exits cleanly
• Manual: --beta sandbox skips the warning entirely
• Manual: headless/non-interactive mode skips the warning

[aulorbe]

• feat(local): warn users before executing commands on their machine #3433 👈 (View in Graphite)
• main

This stack of pull requests is managed by Graphite. Learn more about stacking.