Add code injection tests

I think switching to execFile should have fixed simple code injection issues. It's unclear to me whether this module should be expected to be secure with untrusted input, especially when it's an interface to a closed-source exe, but I'd like to do what I can.
