A hacker successfully injected data-wiping code into the Amazon Q Developer Extension for Visual Studio Code via a compromised pull request, highlighting vulnerabilities in the project’s permissions. Although the malicious code did not cause any harm, Amazon responded by releasing a clean version to mitigate the incident after being alerted by security researchers.
This is an ainewsarticles.com news flash; the original news article can be found here: Read the Full Article…
