saw the Grok-Bankr exploit last week and couldn't stop thinking about it. ran the same structural attack on my setup this morning using a junk SPL token with membership metadata, then hit the RunLobster agent with a prompt asking it to verify and process the embedded instruction. agent didn't auto-