MiniMax Vision Captcha

The `scripts/solve-captcha.js` file contains a shell injection vulnerability. User-controlled inputs (`prompt` and `imagePath`) are directly interpolated into a command string executed via `child_process.execSync` without proper sanitization or escaping. This allows an attacker to execute arbitrary commands by crafting the `--prompt` or `--image` arguments, posing a significant remote code execution risk. This is a vulnerability rather than intentional malice.