Replaced usage of `subprocess.run(..., shell=True)` and system-specific commands (`xcopy`, `copy`) with Python's `shutil` module.
🚨 Severity: HIGH
💡 Vulnerability: Command Injection & Platform Incompatibility
🎯 Impact: Potential for arbitrary command execution if paths are tainted; script was broken on non-Windows platforms.
🔧 Fix: Used `shutil.copytree` and `shutil.copy2` for secure, cross-platform file operations.
✅ Verification: Ran script in dry-run mode (`--dry-run`) and validated repository integrity with `ci_validate_repo.py`.
