fix(apple-container): three runtime bugs that break first-time setup

[lazure-ocean]

Summary

Found and fixed three bugs in the skill/apple-container branch that cause setup to fail completely on a fresh macOS install.

• Remove /dev/null host mount from container-runner.ts — Apple Container (VirtioFS) only supports directory mounts, not file/device mounts. Every container start crashed with path '/dev/null' is not a directory. The Dockerfile entrypoint already handles .env shadowing inside the VM via mount --bind (running as root), so this host-side mount is redundant.
• Fix CONTAINER_HOST_GATEWAY — host.docker.internal is a Docker-specific hostname that Apple Container VMs don't have in /etc/hosts. The host is at the bridge100 interface IP (192.168.64.1). Now auto-detected; falls back to host.docker.internal for Docker Desktop.
• Fix PROXY_BIND_HOST — The credential proxy was binding to 127.0.0.1, which isn't reachable from Apple Container VMs on 192.168.64.0/24. Now binds to the bridge100 IP when present; falls back to 127.0.0.1 for Docker Desktop.

Test plan

• Fresh macOS setup with Apple Container — all three issues reproduced without this fix, resolved with it
• Container starts successfully, .env is hidden from agent (verified mount --bind works inside VM)
• Credential proxy reachable from inside container at 192.168.64.1:3001
• Build clean, existing tests pass

🤖 Generated with Claude Code

[gavrielc]

Thank you for identifying this — the fix is now in #1609 (skill branch) and #1610 (main). You're credited as a co-author on both commits and added to CONTRIBUTORS.md. The final approach requires CREDENTIAL_PROXY_HOST in .env (set during /convert-to-apple-container) and fails fast if missing, rather than silently binding to 0.0.0.0 or the bridge IP. Closing in favor of those PRs.