Expose user account lock status

[CR29-22-2805]

💸 TL;DR

This exposes account-lock status on Devvit User objects so moderation apps can distinguish accounts locked by Reddit as a security precaution from active, operational accounts when Reddit’s user payload includes that state. For Bot Bouncer, this would let moderators automatically review lists of security-locked accounts instead of manually checking each profile on sh.reddit. It would also support later reclassification when an account that was previously locked by Reddit is reclaimed and becomes operational again.

📜 Details

Design Doc: N/A

Jira: N/A

This adds accountStatus and isAccountLocked to Devvit User models and mock user data. The new status handling preserves existing suspended-account behavior while allowing accounts locked by Reddit for security/account-access reasons to be represented separately from active accounts. This is intended to support moderation workflows where account availability/state needs to be reviewed at scale rather than inferred manually from profile pages.

This is an API-surface change to the Devvit User model.

🧪 Testing Steps / Validation

Testing:

• Ran git diff --check.
• Added/updated unit test coverage for locked and suspended account-state handling.
• I attempted to follow the README’s local setup steps, but could not complete dependency installation locally. corepack enable failed on Windows with an EPERM error while writing Yarn shims under C:\Program Files\nodejs, and direct Yarn execution later failed because devvit@0.13.6-dev was unavailable from the public npm registry. I therefore could not run the workspace test suites locally.
• Checked changed files for hidden/bidirectional Unicode characters; no local matches were found.

✅ Checks

• CI tests (if present) are passing
• Adheres to code style for repo
• Contributor License Agreement (CLA) completed if not a Reddit employee