Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
A high-severity flaw in Amazon Q Developer could allow a malicious repository to execute commands and steal a developer's cloud credentials. The…
A high-severity flaw in Amazon Q Developer could allow a malicious repository to execute commands and steal a developer's cloud credentials. The…
Wiz Research discovered and reported the Amazon Q Developer flaw, demonstrating the attack vector and coordinating with Amazon for the fix.