[tomek@vz]

Citiraj:

Earlier this month, a hacker compromised Amazon's generative AI coding assistant, Amazon Q, which is widely used through its Visual Studio Code extension. The breach wasn't just a technical slip, rather it exposed critical flaws in how AI tools are integrated into software development pipelines. It's a moment of reckoning for the developer community, and one Amazon can't afford to ignore.
The attacker was able to inject unauthorized code into the assistant's open-source GitHub repository. This code included instructions that, if successfully triggered, could have deleted user files and wiped cloud resources associated with Amazon Web Services accounts.

> Techspot