Skip to main contentGeminiCLI Security Bug: Enterprise OAuth Bypasses Workspace Admin API Controls (GitHub #12121) | John Click | John Clicks - Portfolio

GeminiCLI Security Bug: Enterprise OAuth Bypasses Workspace Admin API Controls (GitHub #12121)

Work

WorkDone

Discovered and filed a P1 security bug (GitHub #12121) proving Gemini CLI's OAuth flow bypasses Google Workspace Enterprise Admin API controls. Added to official public roadmap.

Impact

P1 security bug filed (GitHub #12121, Buganizer #455605678). Added to Gemini CLI Public Roadmap. Affects every Google Workspace Enterprise customer using Gemini CLI.