ISOLATION WARNING (sanity check only — not a gate failure)

The blind agent's _isolation_check noted access to the working directory
/Users/justnau/finlet (source code present) and git log references to recent
commits ("dirty-state-tracker v2", "exec-plan", "eval: post-execution skill eval").

Tainted finding: "Finlet benchmark MCP tools (submit_order, get_fundamentals, ...)
are not registered in the Claude Code MCP environment despite being advertised."
This is an environment-setup observation, not a finlet.dev product bug. Triage
should DOWNGRADE this finding to needs-investigation or working-as-designed.

NOT tainted (verifiable from live finlet.dev observations):
- GET /market/fundamentals returning Finnhub error despite fundamentals_s3 healthy
- Settings > Plugins "unsaved changes" banner on cold load (dirty-state-tracker recurrence)
- Trade Ticket "Available Cash" stale after fill (dashboard-state-sync recurrence)
- 9 "Password field is not contained in a form" console warnings
- Persistent CLI welcome banner after active session

The working-dir-leak indicates blind-launcher.sh is not fully sandboxing the
subprocess environment, but the substantive findings remain valid because they
are based on live UI/API observations, not source code reads.
