Runtime bump v1.23

Thread body

We just bumped the runtime to v0.1.23 and tightened a few things that make the live player feel a lot more reliable. The biggest change is that sharing is now single-flight across the app, so repeated taps on Share no longer trip the browser’s “earlier share has not yet completed” error or spam false failure telemetry. On the HTML runtime side, we also cleaned up how third-party scripts are handled: old Ahrefs and Cloudflare beacon snippets get stripped out, raw cdn.tailwindcss.com scripts are removed, and HTML vibes now consistently rely on Vibecodr’s self-hosted Tailwind runtime instead of a cross-origin CDN fetch that the sandbox can’t load anyway. We also added a serve-time safety pass for legacy HTML bundles, which means older published vibes can benefit from those fixes without needing a manual republish. And because the Tailwind runtime is self-hosted here, we removed the misleading upstream CDN warning from the shipped runtime asset so the console reflects what the platform is actually doing now: fewer false errors, cleaner runtime behavior, and much more predictable HTML vibe execution.