wip: potential fix for code scanning alert no. 5: Shell command built from environment values

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>

Author: vobu

tests/integration/plugin-lifecycle.test.ts

@@ -356,7 +356,13 @@ export const commands = {
       );
 
       // Load the plugin
-      execSync(`node src/index.ts load plugin --from file:${conflictDir}`, {
+      execFileSync('node', [
+        'src/index.ts',
+        'load',
+        'plugin',
+        '--from',
+        `file:${conflictDir}`,
+      ], {
         cwd: process.cwd(),
         stdio: 'pipe',
         timeout: 10000