Google has addressed a critical vulnerability with a CVSS score of 10.0 in its Gemini command-line interface (CLI) tool, which could potentially allow for remote code execution. The patch has been applied automatically for some users, but Google advises all users operating in headless mode or utilizing GitHub Actions to thoroughly review their workflows. Failure to do so may result in disruptions to continuous integration and continuous deployment (CI/CD) pipelines. Users are encouraged to ensure that their systems are updated and functioning correctly following the implementation of the fix.
Don't miss out on breaking stories and in-depth articles.