@wolf480pl @linear To put comments?
Interesting at first but I'd say it's actually an awful idea as it could be a strong way of making malware seem legit. Because reviewers, specially casual ones like packagers which aren't going to go in careful auditing mode, would end up trusting the comments over the actual code.

I think it would make more sense to verify (say with sandboxing or separated repo for the fixtures) that the test fixtures aren't used in production binaries.
Which could allow to have well-known fixtures, quite like the PNG ones, that could be carefully reviewed once and not need modifications for many years.