Apr 302026 Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace trust.
