fix(diff): avoid input-derived Myers allocation arithmetic

[SivanCola]

Summary

• Follow up on fix(diff): bound the Myers n+m sum so it can't overflow (CodeQL) #3773 and fix(diff): clamp Myers edit-distance operands to clear the allocation overflow alert #3775 / fix(diff): bound the Myers n+m sum so it can't overflow (CodeQL) #3773 (comment).
• Compute the Myers maxD cap without directly adding the two input lengths.
• Compute the allocation width from the fixed edit budget instead of 2*maxD+1, and cover huge-int inputs with a unit test.

Testing

• go test ./internal/diff/
• go test ./... fails in internal/control: TestRemoveMCPServerRemovesUnconnectedLazyPlaceholder sees locally configured MCP names instead of an empty config.

[chatgpt-codex-connector]

You have reached your Codex usage limits for code reviews. You can see your limits in the Codex usage dashboard.
To continue using code reviews, add credits to your account and enable them for code reviews in your settings.

[esengine]

Nice — this is the approach that actually satisfies the analyzer. By computing min(n+m, maxDiffEdits) and 2*maxD+1 with bounded loops instead of arithmetic on the input lengths, there's no input-derived +/* flowing into the allocation at all, so CodeQL's go/allocation-size-overflow has nothing left to flag — which my earlier clamp couldn't achieve. Both loops are O(maxDiffEdits) and run once per diff, so the cost is nil, and the TestMyersMaxD_CapsWithoutOverflow cases (incl. maxInt) pin the bound. Merging.