fix(.life): binding ui_hints _ref fields path-traversal pattern (post-#111 review)

[devin-ai-integration]

Summary

Sibling fix to the path-traversal tightening on providers_whitelist_ref
that landed inside #111. A new Devin Review finding on the merged
PR pointed out that surface.ui_hints.avatar_image_ref and
surface.ui_hints.background_audio_ref are also paths-inside-.life
and were left with minLength: 1 only — same defence-in-depth gap as
providers_whitelist_ref had before #111.

This PR applies the same ^(?!/)(?!.*\\.\\.).+$ pattern (cross-schema
convention shared with life-package.schema.json::contents[].path,
lifecycle.schema.json::mutation_log_ref, and the now-fixed
binding.schema.json::providers_whitelist_ref).

Changes

• schemas/binding.schema.json: add pattern to avatar_image_ref and
  background_audio_ref under surface.ui_hints (additionalProperties: false block).
• tools/test_binding_schema.py: 8 new cases (6 negative + 2 happy)
  per field — absolute path (/etc/passwd), parent-dir traversal
  (../etc/passwd), embedded .. segment (media/../etc/passwd), and
  one normal relative path (media/avatar.png). Total goes from 55 → 63
  (11 happy-path + 52 negative).
• CHANGELOG.md: bump the v0.8 binding sanity-test count and explain
  the bump source.

Local validation

• python tools/test_binding_schema.py → run: 63 cases, failures: 0
• python tools/batch_validate.py → 21/21 steps pass

Review & Testing Checklist for Human

Risk: green — 2-line schema tightening + 8 new sanity tests, no
behavioural change for any compliant binding (existing example bindings
already use bare relative paths).

• Confirm the regex ^(?!/)(?!.*\\.\\.).+$ matches what
  life-package.schema.json::contents[].path and
  lifecycle.schema.json::mutation_log_ref use.
• Confirm no shipped example or fixture file breaks (the only
  example currently using ui_hints lives inside test fixtures and
  uses disclosure_label only).

Notes

• Closes the Devin Review finding BUG_pr-review-job-2571dd92…
  on the merged v0.8: docs/LIFE_BINDING_SPEC.md + schemas/binding.schema.json + sanity tests (#103) #111.
• Same follow-up pattern as fix(.life): genesis audit_event_ref pattern is 1-based, matches repo convention (post-#108 review) #109 → v0.8: docs/LIFE_GENESIS_SPEC.md + schemas/genesis.schema.json + sanity tests (#101) #108 and fix(.life): lifecycle.asset_lifecycle.supersedes asset_id pattern + CHANGELOG count (post-#110 review) #112 → v0.8: docs/LIFE_LIFECYCLE_SPEC.md + schemas/lifecycle.schema.json + sanity tests (#102) #110.

Link to Devin session: https://app.devin.ai/sessions/ff7322e18fd94887875daa2c1c75f87d
Requested by: @LING71671

---

[devin-ai-integration]

🤖 Devin AI Engineer

I'll be helping with this pull request! Here's what you should know:

✅ I will automatically:

• Address comments on this PR. Add '(aside)' to your comment to have me ignore it.
• Look at CI failures and help fix them

Note: I can only respond to comments from users who have write access to this repository.

⚙️ Control Options:

• Disable automatic comment and CI monitoring

[devin-ai-integration]

✅ Devin Review: No Issues Found

Devin Review analyzed this PR and found no potential bugs to report.

View in Devin Review to see 2 additional findings.