🤖 Category: improvement
User Impact: Users get a dedicated Extensions view and clearer chat context about which extensions were actually used, while agent-enabled MCP extensions are now scoped to the current chat/session instead of silently changing future chats.

Problem: Extension management was split across settings, config defaults, chat-time extension usage, and agent-managed MCP enablement. The previous branch behavior blurred those boundaries: when the Extension Manager enabled an MCP extension from chat, it persisted that as a global config change for future chats. We also had a temporary special case that kept global toggles for three default-off Goose capabilities (chatrecall, summarize, and code_execution), which is no longer the right model.

Solution: This PR separates extension defaults from session state:

• The Extensions page manages configured extensions and global defaults for future chats.
• User-managed external extensions (stdio / streamable_http) can still be added, edited, and deleted from the Extensions view, but they no longer have global enable/disable toggles.
• Built-in/platform Goose capabilities no longer get the old special-case global toggles for chatrecall, summarize, and code_execution.
• When the agent uses the Extension Manager to enable or disable an extension, that change updates the live extension manager and persists only to the current session's extension_data.enabled_extensions.
• Resuming a session restores that session-specific extension set; starting a different chat falls back to the global defaults unless that chat has its own saved session extension state.
• The chat context panel now uses typed session extension status data to show only extensions actually used by tool requests in that conversation, including connection state and tool counts.

Reproduction Steps

1. Open Goose desktop and confirm the sidebar includes an Extensions navigation item.
2. Navigate to Extensions and verify configured extensions are searchable and grouped between apps/services and Goose capabilities.
3. Confirm user-managed stdio / streamable_http extensions can be configured, edited, and deleted, but do not show global enable/disable controls.
4. Confirm built-in/platform Goose capabilities, including chatrecall, summarize, and code_execution, do not get special global enable/disable controls.
5. From chat, ask Goose to use an extension that is not active in the current session.
6. Confirm the Extension Manager can enable it for that chat and that the response says it was enabled for the session.
7. Start or open another chat and confirm that agent-enabled extension does not become globally enabled there unless it is part of that chat's own saved session state.
8. Open a chat that has used extension-backed tools and check the context panel Details tab.
9. Confirm the Extensions used widget lists only extensions used in that chat, with connection status and tool counts.
10. Add, edit, disable, or delete a configurable external extension and confirm the list refreshes without reopening the page.

Verification

• cargo fmt
• just generate-acp-types
• pnpm test src/features/extensions/lib/__tests__/extensionUsage.test.ts src/features/extensions/lib/__tests__/extensionCategories.test.ts
• pnpm test src/features/extensions/ui/__tests__/ExtensionsSettings.test.tsx
• pnpm test src/shared/api/__tests__/acpNotificationHandler.test.ts
• pnpm typecheck
• git diff --check
• Commit/pre-commit hooks passed their configured formatting, file-size, i18n, and typecheck steps. They emitted existing non-fatal warnings about broken local skill symlinks and platform/engine mismatches.