feat(approvals): redact secret-shaped param values from display

[kungfuk3nnyyy]

Summary

Tool params on approval cards were JSON-stringified verbatim — anyone shoulder-surfing could read out live bearer tokens, API keys, session ids etc. from `runHttpRequest` / connector-config approvals.

Walks the params object and redacts string values to `"***"` when the key matches:

```
/(token|secret|password|api[-]?key|auth(orization)?|bearer|cookie|session[-]?id|private[_-]?key)/i
```

Case-insensitive substring match. Conservative by design — a key has to look secret-shaped. False positive (an "api key" that's a category id) is much less bad than a false negative.

Applies to both the expanded card body and the "copy params" button so copying a redacted blob avoids accidental paste of a real secret into Slack/issue tracker.

Display-only: bridge keeps the real params for the actual tool call; approval flow only signals approve/reject via callId.

Test plan

• Approval card with `{Authorization: "Bearer abc123"}` → renders `***`
• `{api_key, apiKey, API-KEY, secretToken}` all redacted
• `{recipient, message}` rendered verbatim
• Nested: `{headers: {Authorization: "…"}}` → redacted in nested object
• Copy params → clipboard contains redacted JSON, not real secret

🤖 Generated with Claude Code