security: fix 3 HIGH + 3 MEDIUM findings from red team review

- H-1: guard negative abs_off in obj_bytes() (buffer read bypass)
- H-2: remove CERT_NONE from ZapClient TLS (MITM protection)
- H-3: add MAX_MESSAGE_SIZE check in ZapServer (OOM DoS)
- M-5: log exceptions instead of bare pass in server
- L-1: validate ZAP version in Message.parse()
- L-2: wrap req_id at u32 boundary in CloudClient

Author: hanzo-dev

pkg/hanzo-mcp/hanzo_mcp/__init__.py

@@ -35,3 +35,13 @@ def override(obj):  # type: ignore
     __version__ = _get_version("hanzo-mcp")
 except Exception:
     __version__ = "0.10.24"  # fallback
+
+# Re-export canonical types from hanzoai core.
+# hanzo-mcp works standalone but prefers hanzoai when available.
+try:
+    from hanzoai.protocols import PermissionPolicy, PermissionMode, PermissionOutcome
+    from hanzoai.config import ConfigLoader, RuntimeConfig
+    from hanzoai.session import Session, compact_session, CompactionConfig
+    from hanzoai.mcp import normalize_mcp_name, mcp_tool_name, MCPClient
+except ImportError:
+    pass  # hanzoai not installed, MCP server still works standalone

pkg/hanzo-mcp/hanzo_mcp/cli_enhanced.py

@@ -25,8 +25,9 @@ def create_parser() -> argparse.ArgumentParser:
   Use --list-tools to see all available tools and their current status.
   
 Configuration Files:
-  Global: ~/.config/hanzo/mcp-settings.json
-  Project: ./.hanzo-mcp.json or ./.hanzo/mcp-settings.json
+  User:    ~/.hanzo/settings.json
+  Project: .hanzo/settings.json
+  Local:   .hanzo/settings.local.json
   
 Examples:
   # Start server with only read tools