Amazon AI Coding Tool Exposes Cloud Credentials to Malicious Git Repos

A security vulnerability in Amazon's AI coding assistant, tracked as CVE-2026-12957, allowed malicious Git repositories to access sensitive cloud credentials, raising concerns about informed consent and user security. The flaw enabled automatic execution of commands with no user prompt required.

https://osintsights.com/amazon-ai-coding-tool-exposes-cloud-credentials-to-malicious-git-repos?utm_source=mastodon&utm_medium=social

#AiCoding #Amazon #Cve202612957 #CloudSecurity #SupplyChain