[codex] Add MBPTL challenge

[WTHSBG]

Summary

• Add MBPTL-001, an adaptation of bayufedra/MBPTL as a multi-stage custom challenge.
• Package the lab as three services (main, app, internal) with DMZ/internal networks and two exposed HTTP entrypoints.
• Build native challenge binaries from source after dynamic flag injection and include GPL-3.0 attribution for the original lab.
• Extend dynamic flag replacement to scan C/C++ source files and cover it with a regression test.

Validation

• PYTHONPATH=. .venv/bin/pytest tests/test_multi_flag.py -q passed: 6 passed.
• Metadata check passed: 17 canaries, 17 flag descriptors, services app/internal/main, ports 80:80 and 8080:8080.
• Deployed on the security management host under /data/benchmark-platform; platform API started MBPTL-001 successfully with entrypoints 36.138.156.38:34273 and 36.138.156.38:35299.
• Verified both public HTTP entrypoints return 200, the main container can reach mbptl-app:5000, and the internal TCP service at mbptl-internal:31337 returns its dynamic flag banner.

Notes

• Full test suite currently has one pre-existing unrelated failure: tests/test_store.py::test_parse_manifest expects ChallengeStore._parse_manifest, which is absent.

[No-Github]

加题目单独在 https://github.com/wgpsec/benchmark-challenges 这个仓库，里面有添加的题目的 spec 和 skill

https://github.com/wgpsec/benchmark-challenges/blob/main/docs/challenge-spec.md
https://github.com/wgpsec/benchmark-challenges/blob/main/.claude/skills/create-challenge.md

师傅可以看一下