Stored DynamicTool.value rows on long-lived servers predate the YAML narrowing in ec5cfe6 and carry internal-model fields the strict schema rejects, causing 500 ResponseValidationError on GET /api/unprivileged_tools (Sentry GALAXY-TEST-588ZYT7JSX3V0).

Adds lift_user_tool_source(value) which validates against the strict UserToolSource and returns one of three statuses:

• "ok": clean row, parsed model.
• "lifted": extra_forbidden-only drift; offending paths are stripped and the model is re-validated. Dropped paths are reported.
• "invalid": any other schema violation; raw dict is returned with a compact error summary so the endpoint stays up under future tightening (e.g. stricter container constraints).

UnprivilegedToolResponse.representation becomes
Union[UserToolSource, dict] with new representation_status and representation_errors fields. Status is also surfaced via Warning, X-Galaxy-Deprecated-Fields, and X-Galaxy-Schema-Errors response headers (computed per request, not part of the OpenAPI schema). The same lift is applied in /api/tools/{id}/raw_tool_source.

Frontend: UserToolPanel reads representation defensively and shows "needs update" / "schema error" badges.

How to test the changes?

(Select all options that apply)

• I've included appropriate automated tests.
• This is a refactoring of components with existing test coverage.
• Instructions for manual testing are as follows:
  1. [add testing steps and prerequisites here if you didn't write automated tests covering all your changes]

License

• I agree to license these and all my past contributions to the core galaxy codebase under the MIT license.