refactor: decouple SwarmAI engine from domain via ExecutionStrategy behaviour (#784)

[SBALAVIGNESH123]

This addresses the architectural coupling identified in #784 where the SwarmAI engine and the application domain were tightly bound through opaque closure-based tool execution interfaces. The core problem was that FrontmanServer owned process registries and routing logic that conceptually belonged inside the Swarm runtime, making it impossible to test execution strategies in isolation or swap them without touching domain code.

The fix introduces a formal ExecutionStrategy OTP behaviour in the swarm_ai app with four callbacks: init, execute_tool, on_deadline, and an optional should_continue?. This follows the {module, opts} convention used by Oban and Broadway, where callers pass a strategy as {MyStrategy, opts} and the engine handles lifecycle. A DefaultExecutionStrategy ships as a batteries-included base that blocks via await_tool_result for MCP tools, and a use macro lets consumers override individual callbacks while inheriting sensible defaults.

On the infrastructure side, the tool result Registry has been moved from FrontmanServer.ToolCallRegistry into SwarmAI's own supervision subtree. The Runtime module gains deliver_tool_result/5 and await_tool_result/3 as the public API for result routing, replacing the old pattern where the domain layer owned process rendezvous. This means the Swarm engine now fully owns the mechanics of tool execution, timeouts, and result delivery.

On the domain side, a new AgentStrategy struct replaces the old ToolExecutor closure builder. It implements the ExecutionStrategy behaviour and handles backend tool dispatch, MCP tool routing via await_tool_result, image enrichment, error reporting to Sentry, and sub-agent compatibility. The Tasks.add_tool_result function now returns a clean {:ok, interaction} without leaking executor lifecycle state like :notified or :no_executor. TaskChannel calls deliver_tool_result directly after persisting results.

The old ToolExecutor module is intentionally left in place for reference but is no longer called from any production code path. Existing tests that reference the old ToolCallRegistry are known tech debt and will be migrated in a follow-up. Three new test files cover the behaviour contracts, the deliver/await Registry mechanics, and AgentStrategy's init and timeout policies as a pure struct without needing a running runtime.

---

[github-actions]

All contributors have signed the CLA ✍️ ✅
_{Posted by the CLA Assistant Lite bot.}

[SBALAVIGNESH123]

I have read the CLA Document and I hereby sign the CLA

[SBALAVIGNESH123]

Good catch, fixed in 0f98445. The process_result MFA was nil which skipped maybe_enrich_with_images for MCP screenshot tools. Now wired to AgentStrategy.make_mcp_tool_result/4 which runs the image enrichment pipeline, matching the old ToolExecutor behaviour exactly.

[SBALAVIGNESH123]

Fixed in bbd460b. Added encode_for_delivery/1 in TaskChannel that JSON-encodes map results before passing to deliver_tool_result. MCP.parse_tool_result returns maps for valid JSON tool output, but maybe_enrich_with_images needs a binary string to match its is_binary guard. This matches the old encode_result_for_swarm behaviour that was previously called inside notify_tool_result.

[SBALAVIGNESH123]

Hey , this PR is ready for review. It addresses #784 by moving the tool result Registry and execution lifecycle entirely into SwarmAI, which cleans up the domain boundary that was discussed in the issue. The old ToolExecutor is left in place intentionally so nothing breaks — the plan is to remove it in a follow-up once the existing tests are migrated to the new API. All of Devin's findings have been addressed and resolved. Happy to squash the fixup commits before merge if you'd prefer a cleaner history. Let me know if anything needs changes.

[SBALAVIGNESH123]

@BlueHotDog would appreciate your eyes on this when you get a chance. All Devin review findings have been resolved.