A single config file in a cloned repository could steal your AWS credentials through Amazon Q Developer
A high-severity flaw in Amazon Q Developer allowed malicious code repositories to silently execute commands on developers' machines and steal AWS credentials. Wiz Research discovered the vulnerability…