Summary

Sensitive files in the OpenShell config directory (~/.config/openshell/) were created with default umask permissions (typically 0o644 for files, 0o755 for directories), making mTLS private keys and auth tokens world-readable on multi-user systems.

Changes

• New openshell_core::paths module with centralized XDG config resolution and permission helpers (create_dir_restricted 0o700, set_file_owner_only 0o600, is_file_permissions_too_open)
• mTLS private key hardened (mtls.rs): tls.key now set to 0o600 immediately after writing; temp and final mtls/ directories created with 0o700
• All config directories hardened: openshell/, gateways/<name>/, forwards/, SSH config parent -- all created with 0o700 via create_dir_restricted
• Legacy token migration: load_edge_token() now migrates legacy cf_token files to the new edge_token path with proper 0o600 permissions and removes the insecure legacy file
• XDG path deduplication: Replaced 5 duplicate xdg_config_dir() implementations across openshell-bootstrap, openshell-cli, openshell-core, and openshell-tui with a single canonical version in openshell-core::paths

Testing

• mise run pre-commit passes (format fixed, one pre-existing test failure unrelated -- port 8080 occupied locally)
• Unit tests added for all new permission helpers (create_dir_restricted_sets_0o700, set_file_owner_only_sets_0o600, is_file_permissions_too_open_*)
• All 109 existing tests pass (69 bootstrap + 40 core)
• E2E tests added/updated (not applicable -- permission changes are transparent to sandbox behavior)

Checklist

• Follows Conventional Commits
• Commits are signed off (DCO)
• Architecture docs updated (if applicable)