Hotfix for Secure LLM save returning a 500 error

Hotfix for v1.10.1. Saving a new Secure LLM provider on a self-hosted install returned a 500 error because the encryption master key generated by the bootstrap script was readable only by the host operator account, while the gateway container reads it as a less-privileged user. The bootstrap script now applies the correct file mode on every run, and the compose file documents the intended ownership for Docker Swarm deployments.

The fix is drop-in. Pull the latest code and recreate the gateway, worker, and scheduler containers — the bootstrap script repairs the file mode automatically.

No action required for SaaS tenants.