CVE-2026-30307 — Roo Code's command auto-approval module contains a critical OS command injection vulnerability that renders its whitelist security mechanism completely ineffective. The system relies on fragile re — CVE Database · The Intelligence Room