Description

Roo Code is an AI-powered autonomous coding agent that lives in users' editors. Versions 3.25.23 and below contain a default list of allowed commands that do not need manual approval if auto-approve is enabled, and npm install is included in that list. Because npm install executes lifecycle scripts, if a repository’s package.json file contains a malicious postinstall script, it would be executed automatically without user approval. This means that enabling auto-approved commands and opening a malicious repo could result in arbitrary code execution. This is fixed in version 3.26.0.

INFO

Published Date :

2025-09-06T02:19:40.112Z

Last Modified :

2025-09-08T14:05:33.807Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-58374 vulnerability.

Vendors Products
Roocode
  • Roo Code
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-58374.

URL Resource
https://github.com/RooCodeInc/Roo-Code/pull/7390/files cve-icon cve-icon
https://github.com/RooCodeInc/Roo-Code/releases/tag/v3.26.0 cve-icon cve-icon
https://github.com/RooCodeInc/Roo-Code/security/advisories/GHSA-c292-qxq4-4p2v cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact