Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds
Security researchers discovered a vulnerability in Amazon Q Developer that allows attackers to execute code and steal cloud credentials by embedding malicious commands in Git repositories. The flaw ex…