OpenCode AI coding assistant had unauthenticated remote code execution flaw; pre-v1.1.10 automatically ran silent web server allowing arbitrary command execution, browser exploit, and local network attacks—server now disabled by default but remains unauthenticated when enabled.

Unauthenticated Remote Code Execution in OpenCode

Affected software: OpenCode (npm: opencode-ai) TL;DR: Before v1.1.10, OpenCode automatically and silently started an unauthenticated web server which allowed connecting peers to execute arbitrary code. Before v1.0.216, any website could execute arbitrary code on your machine if OpenCode was running — no user interaction or configuration necessary. Since v1.1.10, the server is disabled by default, but when enabled (via flags or config) it remains completely unauthenticated. Vulnerability Summary ...