TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
Find similarView original
The Hacker News avatar

TGINSIGHT POST

Post #8902

@thehackernews

The Hacker News

Views8,440Post view count
PostedApr 3004/30/2026, 07:14 AM
Post content

Post content

πŸ›‘ Gemini and Cursor vulnerabilities exposed direct code execution in dev workflows. #Gemini CLI (CVSS 10.0) auto-trusted folders in CI, letting malicious .gemini/ configs from PRs run on hosts. #Cursor bugs triggered hidden Git hooks and exposed local API keys via extensions. πŸ”— Details β†’ https://thehackernews.com/2026/04/google-fixes-cvss-10-gemini-cli-ci-rce.html