v1.0.216-secure: CVE-2026-22812 fixed

First release of barrersoftware/opencode-secure fork.
Fixes critical RCE vulnerability that upstream refuses to patch.

Security changes:
- Auto-generate secure passwords when OPENCODE_SERVER_PASSWORD not set
- Mandatory authentication (removed bypass)
- Cryptographically secure password generation
- Rejection sampling to eliminate modulo bias

This fork exists because the upstream maintainers chose to keep a
CVSS 8.8 Remote Code Execution vulnerability open for 'backwards
compatibility' reasons.

We choose users' security over their convenience.