feat(core): introduce Client::gov_mode() with URL-host inference

[addisonbeck]

🎟️ Tracking

https://bitwarden.atlassian.net/browse/PM-38266

📔 Objective

Expose Client::gov_mode() on bitwarden_core::Client so SDK consumers can detect Gov environments without rebuilding URL inference locally.

Later on PM-36520 we'll replaces URL inference with a some sort of /api/config gov_mode read. After that isGovMode on clients will be updated to call the SDK.

[github-actions]

🔍 SDK Breaking Change Detection

SDK Version: pm-38266-gov-mode (3d03906)

⚠️ If breaking changes are detected, a corresponding pull request addressing them must be ready for merge in the affected client repository.

Client	Status	Details
typescript	✅ No breaking changes detected	Compilation passed with new SDK version - View Details
android	✅ No breaking changes detected	Compilation passed with new SDK version - View Details

---

Breaking change detection uses the build of the SDK from this branch, including any incompatibities pre-existing on or merged into this branch. Check the workflow logs to confirm.
Results update as workflows complete.

[codecov]

Codecov Report

❌ Patch coverage is 88.23529% with 6 lines in your changes missing coverage. Please review.
✅ Project coverage is 85.09%. Comparing base (f20702c) to head (098a8e9).

Files with missing lines	Patch %	Lines
crates/bitwarden-uniffi/src/lib.rs	0.00%	3 Missing ⚠️
crates/bitwarden-wasm-internal/src/client.rs	0.00%	3 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1147      +/-   ##
==========================================
- Coverage   85.09%   85.09%   -0.01%     
==========================================
  Files         464      465       +1     
  Lines       63866    63917      +51     
==========================================
+ Hits        54348    54390      +42     
- Misses       9518     9527       +9     

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[addisonbeck]

didn't get this quite ready before signing off for the weekend, sorry for the ping. Please ignore!

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

🤖 Bitwarden Claude Code Review

Overall Assessment: APPROVE

Reviewed the introduction of Client::gov_mode() on bitwarden_core::Client, which infers Gov Mode from the configured API URL host, along with its UniFFI and WASM bindings. The URL-host matching logic correctly uses parsed-host comparison rather than substring matching, and the test suite covers canonical hosts, alternate subdomains, spoofed subdomains, path-only matches, case-insensitivity, and invalid URLs. The url dependency added to bitwarden-core is already an approved workspace dependency.

Code Review Details

No findings. The implementation is correct, the security-sensitive subdomain-spoofing edge cases are explicitly handled and tested, the bindings follow existing patterns, and the known self-hosted limitation is documented and deferred to PM-36520.