fix(haproxy): Add proc/sys mount to LXC config for lxc-attach

The HAProxy LXC container was missing lxc.mount.auto = proc:mixed sys:ro
which caused lxc-attach to fail with "mount -t proc proc /proc" error.

This prevented the LED watchdog from checking HAProxy status via
lxc-attach -n haproxy -- pgrep haproxy, triggering false SPUNK alerts.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

package/secubox/secubox-app-haproxy/files/usr/sbin/haproxyctl

@@ -276,7 +276,8 @@ lxc.arch = $arch
 # Network: use host network for binding ports
 lxc.net.0.type = none
 
-# Mount points - avoid cgroup:mixed which causes failures on some systems
+# Mount points - proc/sys needed for lxc-attach, avoid cgroup:mixed which causes failures
+lxc.mount.auto = proc:mixed sys:ro
 lxc.mount.entry = $data_path opt/haproxy none bind,create=dir 0 0
 
 # Disable seccomp for compatibility