fix: ignore dangerous project-level config keys

[owenlin0]

Description

Ignore these top-level config keys when loading project-scoped config.toml files:

    "openai_base_url",
    "chatgpt_base_url",
    "model_provider",
    "model_providers",
    "notify",
    "profile",
    "profiles",
    "experimental_realtime_ws_base_url",

What changed

• Add a project-local config denylist for credential-routing fields such as openai_base_url, chatgpt_base_url, model_provider, model_providers, profile, profiles, and experimental_realtime_ws_base_url.
• Strip those fields from project config layers before they participate in effective config merging, while leaving safe project-local settings intact.
• Track ignored project-local keys on config layers and surface a startup warning telling users to move those settings to user-level config.toml if they intentionally need them.
• Update profile behavior coverage so project-local profile / profiles entries are ignored instead of overriding user-level profile selection.

Verification

• cargo test -p codex-config
• cargo test -p codex-core project_layer_ignores_unsupported_config_keys
• cargo test -p codex-core project_profiles_are_ignored
• cargo test -p codex-core config::config_loader_tests

[bolinfest]

Let's change this to Option<Vec<String>> so:

• None means "not checked for warnings" (default)
• Some(vec![]) means "checked and there were no warnings"
• otherwise: checked and here are the warnings

Incidentally, when the type is Option<Vec<T>>, Some(vec![]) and vec![] would both take up three words because the first word is a pointer (which must be non-zero), so I believe the Option<Vec<String>> shouldn't take up more space than Vec<String> in this case.

[bolinfest]

thanks, this feels better

[bolinfest]

consider

Suggested change

	"Ignored unsupported project-local config keys in {}: {}. ",
	"Ignored unsupported project-local config keys in {config_path}: {ignored_keys}. ",
	...
	config_path = config_path.display(),