Input validation error in GitHub CLI - #VU136854
Published: July 3, 2026
GitHub CLI
Detailed vulnerability description
The vulnerability allows a remote user to execute arbitrary code.
The vulnerability exists due to improper input validation in the gh codespace jupyter command when opening the Jupyter server URL returned by a process inside the Codespace. A remote user can supply a crafted vscode:// URL to execute arbitrary code.
User interaction is required to accept a VS Code open URL or Workspace Trust prompt.