Blog

Google’s fix for critical Gemini CLI bug might break your CI/CD pipelines

May 6, 2026

Novee Security found a CVSS 10.0 flaw in Gemini CLI that silently executed attacker-controlled content before sandbox initialization — exposing secrets, credentials, and source code across CI/CD workflows.

2 mins

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Novee Marketing

May 6, 2026

Novee Security discovered a CVSS 10.0 flaw in Google's Gemini CLI allowing arbitrary host command execution before sandbox initialization — patched across all affected versions.

1 min

Critical Gemini CLI Flaw Enabled Host Code Execution, Supply Chain Attacks

Novee Marketing

May 6, 2026

Novee Security discovered a critical RCE flaw in Gemini CLI that exposed CI/CD pipelines to supply chain attacks. Google has issued a patch.

1 min

Novee introduces autonomous AI red teaming for LLM applications

Novee Marketing

March 26, 2026

SecurityWeek reports on Novee’s launch of autonomous AI red teaming for LLM applications.

1 min

Training an AI agent to attack LLM applications like a real adversary

Novee Marketing

March 26, 2026

Help Net Security reports on Novee’s launch of autonomous AI red teaming for LLM applications.

1 min

Novee launches AI red teaming tool for LLM app risks

Novee Marketing

March 26, 2026

SecurityBrief reports on Novee’s launch of autonomous AI red teaming for LLM applications.

1 min

Cloning Attacker Tradecraft: Why AI Pentesting is Becoming Essential

Novee Marketing

March 25, 2026

Novee CEO Ido Geffen explains how AI penetration testing differs from traditional scanning and why continuous, attacker-like validation is becoming essential as enterprises ship code faster and attackers adopt AI.

1 min

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Novee Marketing

February 20, 2026

SecurityWeek reports on Novee’s AI-driven research uncovering 16 PDF platform vulnerabilities

1 min

Novee Emerges From Stealth With $51.5M to Counter AI Cyberattacks With a Proprietary AI Hacker

Novee Marketing

January 16, 2026

Venture Beat covers Novee's launch

1 min

Stay updated

Get the latest insights on AI, cybersecurity, and continuous pentesting delivered to your inbox

Blog

Google’s fix for critical Gemini CLI bug might break your CI/CD pipelines

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Critical Gemini CLI Flaw Enabled Host Code Execution, Supply Chain Attacks

Novee introduces autonomous AI red teaming for LLM applications

Training an AI agent to attack LLM applications like a real adversary

Novee launches AI red teaming tool for LLM app risks

Cloning Attacker Tradecraft: Why AI Pentesting is Becoming Essential

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Novee Emerges From Stealth With $51.5M to Counter AI Cyberattacks With a Proprietary AI Hacker

Stay updated

Follow the path real attackers take