CVE-2026-30307

Name of the Vulnerable Software and Affected Versions Roo Code (affected versions not specified)

Description The command auto-approval module in Roo Code has a critical operating system command injection flaw that bypasses its whitelist security. The system uses weak regular expressions to analyze commands and fails to account for Shell command substitution using $(...) and backticks. An attacker can inject malicious code into commands, such as git log --grep="$(malicious command)", which the system incorrectly identifies as safe, leading to automatic approval and Remote Code Execution without user interaction. The underlying Shell prioritizes the execution of the injected malicious code within the arguments.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.