The Hacker News

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...
SecurityWeek

Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack

Attackers could inject prompts into a GitHub issue and take over the AI agent designed to automatically triage the issue.
Hosted on MSN

Gemini CLI flaw posed critical supply chain attack risk

A critical vulnerability in the open source Gemini CLI tool could have enabled attackers to execute arbitrary commands and compromise the software supply chain, according to Pillar Security. The flaw ...
adtmag.com

Google Adds “Plan Mode” to Gemini CLI to Support Safer Code Planning

Google added a new “plan mode” to Gemini CLI. The feature places the tool in a read-only environment where developers can analyze codebases, research changes, and design implementation strategies ...
CSO Online

Max-severity RCE flaw found in Google Gemini CLI

Security researchers warn that a vulnerability in the widely used Gemini CLI could allow remote code execution in CI/CD ...
InfoWorld

Firebase Studio adds autonomous Agent mode, MCP support, Gemini CLI

Google’s cloud-based, AI-assisted development environment offers three different modes of interacting with the company’s Gemini AI model. Google’s Firebase Studio, an AI-powered development workspace ...
Taiwan News

TestMu AI Launches Kane CLI, the New Browser Automation Tool Built for AI Agents and Developers

TestMu AI (formerly LambdaTest), the world's first full-stack Agentic Quality Engineering platform, today announced the launch of Kane CLI, a new browser automation tool that runs directly from the ...