Hosted on MSN

Amazon quietly fixed Q Developer flaws that made AI agent vulnerable to prompt injection, RCE

Amazon has quietly fixed a couple of security issues in its coding agent: Amazon Q Developer VS Code extension. Attackers could use these vulns to leak secrets, including API keys from a developer's ...
SiliconANGLE

Amazon partners with GitLab to bring Q Developer to DevSecOps workflows

Amazon Web Services Inc. today announced a partnership with DevSecOps tooling provider GitLab Inc. that will integrate it with agentic artificial intelligence development assistant Q Developer. GitLab ...
CSOonline

Hackers can slip ghost commands into the Amazon Q Developer VS Code Extension

The Amazon Q Developer VS Code Extension is reportedly vulnerable to stealthy prompt injection attacks using invisible Unicode Tag characters. According to the author of the “Embrace The Red” blog, ...
SiliconANGLE

Amazon announces Q Developer preview in GitHub for AI-powered code generation and review

Amazon Web Services Inc. today announced a preview for its agentic artificial intelligence software development assistant Q Developer for Microsoft Corp.’s open-source code repository GitHub. Millions ...
Neowin

Amazon Q Developer Gen AI code assistant now available on GitHub

Amazon has launched a free preview of its generative AI code assistant, Amazon Q Developer, directly integrated into GitHub and GitHub Enterprise Cloud. Amazon Q Developer is a generative AI code ...