CodeWhale is a terminal-based coding agent integrating DeepSeek and MiMo. In versions prior to 0.8.26, the task_create tool spawns durable sub-agents that inherit two insecure defaults: allow_shell defaults to true (config.rs:1499) and auto_approve defaults to true (task_manager.rs:297). When a user approves a task_create call—which itself requires explicit approval (ApprovalRequirement::Required)—they ap [truncated]
A Server-Side Request Forgery (SSRF) vulnerability exists in CodeWhale, a terminal-based coding agent integrating DeepSeek and MiMo. The `fetch_url` tool in versions prior to 0.8.22 performs initial IP address validation against a restricted-IP blocklist to prevent SSRF attacks against internal services such as cloud metadata endpoints, localhost, and private networks. However, the HTTP client (reqwest) i [truncated]
