[codex] Reject read-only fallback with approvals disabled

[viyatb-oai]

Why

If a user configures approval_policy = "never" with sandbox_mode = "danger-full-access", managed requirements can reject full access and force the existing permission fallback to read-only. That leaves Codex in a dead-end session: writes are blocked by the sandbox, while approvals are disabled so the session cannot ask to proceed.

This PR rejects that constrained configuration during startup instead of letting the TUI enter a read-only session that cannot make progress. The rejection is attached to the requirement-constrained permission path in Config.

What changed

• Reject the danger-full-access to read-only managed-requirements fallback when the effective approval policy is never.
• Explain in the startup config error why the fallback is invalid and how to fix it.
• Add a regression test for the managed requirements path.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: f24c47bbae

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".