Fix Windows PTY teardown by preserving ConPTY ownership

[iceweasel-oai]

Why

On Windows, background terminals could stay visible after their shell process had already exited. The elevated runner waits for the PTY output reader to reach EOF before it sends the final exit message, but the ConPTY helper was reducing ownership down to raw handles too early. That left the pseudoconsole's borrowed pipe handles alive past teardown, so EOF never propagated and the session stayed running.

What changed

• change utils/pty/src/win/conpty.rs to hand off owned ConPTY resources instead of leaking only raw handles
• make windows-sandbox-rs/src/conpty/mod.rs keep the pseudoconsole owner and the backing pipe handles together until teardown
• update the elevated runner and the legacy unified-exec backend to keep that ConptyInstance alive, take only the specific pipe handles they need, and drop the owner at teardown instead of trying to close a detached pseudoconsole handle later

Testing

• desktop app in Auto-review: 11 x cmd /c "ping -n 3 google.com" all exited cleanly and did not accumulate in the UI
• desktop app in Auto-review: 5 x cmd /c "ping -n 30 google.com" appeared in the UI and drained back out on their own

[iceweasel-oai]

@codex review

[iceweasel-oai]

@codex review

[chatgpt-codex-connector]

Codex Review: Didn't find any major issues. Swish!

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".