fix(permission): stop logging full rulesets during evaluation

[notzenco]

Issue for this PR

Closes #17218

Type of change

• Bug fix
• New feature
• Refactor / code improvement
• Documentation

What does this PR do?

PermissionNext.evaluate() was logging the entire merged ruleset on every call. On installs with lots of external_directory rules, that makes each permission log line very large and causes the log directory to grow much faster than it should.

This keeps the permission evaluation log, but only records the matched rule and the merged rule count. That still shows why a permission check resolved the way it did without dumping the full ruleset into every log line.

I also added a small config dependency guard after the Windows e2e failure on this branch. When a local .opencode directory is already inside a repo with @opencode-ai/plugin available from a parent install, we now skip creating a second local install just for that directory.

How did you verify your code works?

• added a regression test that checks permission logs include rule= and rules= but no ruleset=
• added a config test that verifies Config.needsInstall() skips a local .opencode dir when the plugin is already available from a parent install
• ran bun test test/permission-next.test.ts test/permission-task.test.ts test/config/config.test.ts
• ran bun typecheck

Screenshots / recordings

N/A

Checklist

• I have tested my changes locally
• I have not included unrelated changes in this PR

[github-actions]

Thanks for updating your PR! It now meets our contributing guidelines. 👍

[Copilot]

Pull request overview

Updates PermissionNext.evaluate() logging to avoid serializing the full merged permission ruleset (which can be large/noisy) while still providing useful debug context about what matched.

Changes:

• Log the matched rule and total rules count instead of logging the entire ruleset object in PermissionNext.evaluate().
• Add a regression test asserting the log line includes rule= and rules=<n> and does not include ruleset=.

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

File	Description
packages/opencode/src/permission/next.ts	Refines evaluate() logging payload to reduce log size and avoid full ruleset serialization.
packages/opencode/test/permission-next.test.ts	Adds coverage to ensure evaluate() logs the matched rule and rule count (and not the full ruleset).

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[titet11]

Stop creating mediocre solutions, you're one of the many who end up damaging the program.