refactor(container): remove Apple Containerization support (#50)

* refactor(container): remove Apple Containerization support

Current behavior:
Headjack supported three container runtimes: Docker, Podman, and Apple
Containerization Framework. Apple Containerization required macOS 26+
and used the `container` CLI binary.

New behavior:
Headjack now supports only Docker and Podman runtimes. All Apple
Containerization code, tests, and documentation references have been
removed. ADR-002 is preserved with "Superseded" status for historical
context.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* fix(container): remove remaining Apple Containerization references

Current behavior:
Several files still contained Apple Containerization references after
the initial removal commit.

New behavior:
- justfile: Remove apple auto-detection and integration-test-apple target
- ADR-002: Update addendum to reflect runtime evolution and removal
- Design docs: Remove Apple from runtime support tables and diagrams
- Code comments: Update to show Docker/Podman only
- Dockerfile: Update iptables workaround comment

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* fix(container): update listArgs comment to remove Apple reference

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

* chore: remove Apple reference from gocontainer

---------

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>

Author: jmgilman

.goreleaser.yaml

@@ -76,5 +76,5 @@ homebrew_casks:
     ids:
       - darwin
     caveats: |
-      Headjack requires a container runtime (Podman, Docker, or Apple Container).
+      Headjack requires a container runtime (Podman, Docker).
       Get started: hjk auth claude && hjk run feat/my-feature --agent claude "Your task"

README.md

@@ -49,7 +49,7 @@ Full documentation is available at [headjack.gilman.io](https://headjack.gilman.
 ## Requirements
 
 - macOS or Linux
-- [Docker](https://www.docker.com/) (default), [Podman](https://podman.io/), or Apple Containerization (macOS 26+)
+- [Docker](https://www.docker.com/) (default) or [Podman](https://podman.io/)
 - Git
 
 ## License

docs/designs/devcontainer-integration.md

@@ -10,7 +10,7 @@ This document describes the design for integrating devcontainer support into Hea
 
 Headjack uses a layered architecture for container management:
 
-1. **Runtime Interface** (`internal/container/container.go`): Abstracts container operations (Run, Exec, Stop, etc.) across Docker, Podman, and Apple Containerization
+1. **Runtime Interface** (`internal/container/container.go`): Abstracts container operations (Run, Exec, Stop, etc.) across Docker and Podman
 2. **Instance Manager** (`internal/instance/manager.go`): Orchestrates instance lifecycle, creating worktrees, containers, and managing sessions
 3. **Image Labels**: Runtime configuration is extracted from OCI image labels (`io.headjack.init`, `io.headjack.podman.flags`, etc.)
 4. **Configuration Merging**: Flags from config files take precedence over image labels
@@ -83,9 +83,6 @@ The devcontainer CLI supports Docker and Podman via the `--docker-path` flag:
 |---------|-----------|-------|
 | Docker | ✅ | Native support |
 | Podman | ✅ | Via `--docker-path podman` |
-| Apple Containerization | ❌ | Not Docker-compatible |
-
-Attempting to use devcontainer mode with Apple Containerization will result in an error.
 
 ### RunConfig Extension
 
@@ -103,7 +100,7 @@ type RunConfig struct {
 }
 ```
 
-- Vanilla runtimes (Docker, Podman, Apple) ignore `WorkspaceFolder`
+- Vanilla runtimes (Docker, Podman) ignore `WorkspaceFolder`
 - `DevcontainerRuntime` uses `WorkspaceFolder` and ignores `Image`
 
 ### DevcontainerRuntime Implementation
@@ -237,11 +234,10 @@ This matches user expectations from VS Code, GitHub Codespaces, and DevPod.
 │  CLI Layer (cmd/run.go)                                         │
 │    │                                                            │
 │    ├── --image flag passed?                                     │
-│    │     └── Yes: Use vanilla runtime (Docker/Podman/Apple)     │
+│    │     └── Yes: Use vanilla runtime (Docker/Podman)           │
 │    │                                                            │
 │    └── devcontainer.json exists?                                │
-│          ├── Yes + Docker/Podman: Use DevcontainerRuntime       │
-│          ├── Yes + Apple: Error (not supported)                 │
+│          ├── Yes: Use DevcontainerRuntime                       │
 │          └── No: Use vanilla runtime with default image         │
 │                                                                 │
 │  Instance Manager receives containerRuntime interface           │

docs/docs/decisions/adr-002-apple-containerization.md

@@ -8,7 +8,11 @@ description: Decision to use Apple Containerization Framework for agent isolatio
 
 ## Status
 
-Accepted
+Superseded
+
+:::info Supersession Note
+Apple Containerization support was removed from Headjack. The project now supports only Docker and Podman runtimes for cross-platform compatibility. This ADR is preserved for historical context.
+:::
 
 ## Context
 
@@ -82,20 +86,19 @@ Use **Apple Containerization Framework** as the isolation technology for Headjac
 - By adopting early, we participate in the framework's growth through usage and bug reports
 - The iptables-legacy workaround for Docker-in-Docker is stable but adds base image complexity
 
-## Addendum: Multi-Runtime Support
+## Addendum: Runtime Evolution
+
+This ADR originally established Apple Containerization Framework as the isolation technology. After further development, Headjack evolved to support multiple runtimes and eventually removed Apple Containerization support in favor of Docker and Podman for cross-platform compatibility.
 
-While Apple Containerization Framework remains the recommended runtime for its superior isolation properties, Headjack now supports multiple container runtimes to accommodate different user preferences and environments:
+Current supported runtimes:
 
 | Runtime | Configuration | Binary | Notes |
 |---------|--------------|--------|-------|
 | Docker | `runtime.name: docker` | `docker` | Default runtime. Cross-platform, widely available. |
-| Apple | `runtime.name: apple` | `container` | Recommended for macOS 26+. VM-level isolation. |
 | Podman | `runtime.name: podman` | `podman` | Daemonless alternative. |
 
 Users can configure their preferred runtime via:
 
 ```bash
 hjk config runtime.name docker
 ```
-
-This flexibility allows teams to use familiar tooling while still benefiting from Headjack's instance and session management.

docs/docs/decisions/adr-003-go-language.md

@@ -69,7 +69,7 @@ Use **Go** as the implementation language for Headjack.
 
 - **Verbosity**: More boilerplate than scripting languages
 - **Error handling**: Explicit error checking adds code volume
-- **No Apple Containerization SDK**: Must shell out regardless (not a Go-specific limitation)
+- **No container CLI SDK**: Must shell out to Docker/Podman CLI (not a Go-specific limitation)
 
 ### Neutral
 

docs/docs/decisions/adr-005-no-gpg-support.md

@@ -12,15 +12,15 @@ Accepted
 
 ## Context
 
-Developers commonly use GPG to sign git commits. When running agents in isolated Apple Containerization instances, the host's GPG keys and agent are not directly accessible.
+Developers commonly use GPG to sign git commits. When running agents in isolated container instances, the host's GPG keys and agent are not directly accessible.
 
 We investigated two approaches to enable GPG signing from within containers:
 
 ### Option 1: GPG Agent Forwarding via TCP Bridge
 
-GPG agent forwarding works by proxying the host's `gpg-agent` socket into the container. However, Unix sockets don't cross VM boundaries (each Apple Container is a separate VM).
+GPG agent forwarding works by proxying the host's `gpg-agent` socket into the container. This requires mounting the socket into the container.
 
-A workaround exists using `socat` to bridge Unix socket → TCP on the host, then TCP → Unix socket in the container. This was validated empirically and works, including with hardware tokens (Yubikey).
+A TCP bridge approach using `socat` to bridge Unix socket → TCP on the host, then TCP → Unix socket in the container was validated empirically and works, including with hardware tokens (Yubikey).
 
 **Complexity:**
 - Requires `socat` installed on host

docs/docs/decisions/index.md

@@ -17,7 +17,7 @@ An Architecture Decision Record (ADR) is a document that captures an important a
 | ADR | Title | Status |
 |-----|-------|--------|
 | [ADR-001](./adr-001-macos-only) | Initial macOS-Only Platform Support | Superseded |
-| [ADR-002](./adr-002-apple-containerization) | Apple Containerization Framework | Accepted |
+| [ADR-002](./adr-002-apple-containerization) | Apple Containerization Framework | Superseded |
 | [ADR-003](./adr-003-go-language) | Go as Implementation Language | Accepted |
 | [ADR-004](./adr-004-cli-agents) | CLI-Based Agents over API-Based | Accepted |
 | [ADR-005](./adr-005-no-gpg-support) | Defer GPG Commit Signing Support | Accepted |
@@ -27,7 +27,7 @@ An Architecture Decision Record (ADR) is a document that captures an important a
 
 These decisions reflect several key themes in Headjack's design:
 
-- **Simplicity over generality**: initial single-platform scope (macOS), OCI images only, CLI agents only
-- **Leverage existing ecosystems**: Apple Containerization, Go CLI patterns, standard OCI tooling
+- **Simplicity over generality**: OCI images only, CLI agents only
+- **Leverage existing ecosystems**: Docker/Podman, Go CLI patterns, standard OCI tooling
 - **Defer complexity**: GPG support deferred, Nix support left to users
 - **Optimize for the common case**: Subscription-based agents, opinionated base images

docs/docs/explanation/image-customization.md

@@ -6,7 +6,7 @@ description: OCI images approach vs alternatives like Nix
 
 # Image Customization
 
-Headjack runs agents in containers, and those containers need the right tools installed. How do you customize the environment when your project needs specific languages, frameworks, or system packages? Headjack answers this with standard OCI images, delegating all customization to Docker, Podman, or Apple Container tooling you already know.
+Headjack runs agents in containers, and those containers need the right tools installed. How do you customize the environment when your project needs specific languages, frameworks, or system packages? Headjack answers this with standard OCI images, delegating all customization to Docker or Podman tooling you already know.
 
 ## The Customization Problem
 

docs/docs/how-to/build-custom-image.md

@@ -27,7 +27,7 @@ hjk run feat/auth --base ghcr.io/gilmanlab/headjack:dind
 
 ### Prerequisites
 
-- Docker, Podman, or Apple Container installed
+- Docker or Podman installed
 - Familiarity with Dockerfile syntax
 
 ### Create a Dockerfile
@@ -85,7 +85,7 @@ podman build -t my-custom-headjack:latest -f Dockerfile.headjack .
 
 ### Build for multiple architectures
 
-For teams with both Intel and Apple Silicon Macs (using Docker buildx):
+For teams with both Intel and ARM Macs (using Docker buildx):
 
 ```bash
 docker buildx build \

docs/docs/how-to/install.md

@@ -12,9 +12,9 @@ This guide is being written. Check back soon!
 
 ## Prerequisites
 
-- macOS or Linux (Apple Containerization requires macOS 26+)
+- macOS or Linux
 - Git
-- Container runtime (Docker, Podman, or Apple Container)
+- Container runtime (Docker or Podman)
 
 ## Installation Steps