fix: respect projectIgnorePaths from socket.yml in scan create

[mtorp]

Summary

• socket scan create now honors projectIgnorePaths from socket.yml when collecting files for a scan
• The downstream glob infrastructure (globWithGitIgnore) already supported this, but the scan create command never loaded socket.yml — this wires it up by calling findSocketYmlSync(cwd) and passing the parsed config to getPackageFilesForScan
• Removes the corresponding TODO comment in the help text

Test plan

• Existing path-resolve.test.mts tests pass (11/11), including the "should respect ignores from socket config" test
• Lint and type checks pass
• Manual test: create a socket.yml with projectIgnorePaths entries and verify socket scan create --read-only excludes the specified paths

---

Note

Medium Risk
Moderate risk because it changes manifest discovery inputs for scans/reachability by applying socket.yml ignore rules, which can alter what gets uploaded and analyzed. The change is localized and uses existing glob/ignore plumbing.

Overview
Respects socket.yml ignores during scan file discovery. socket scan create and socket scan reach now call findSocketYmlSync(cwd) and pass the parsed config into getPackageFilesForScan, so projectIgnorePaths affects which local manifests are included.

Also removes a stale TODO in scan create help text and bumps the CLI version to 1.1.78 with an updated changelog entry.

^{Written by Cursor Bugbot for commit 55e3874. Configure here.}