IT News For Australia Business

Code syntax error prevented hacked AWS AI dev extension from running

AWS has published further details of an incident involving one of its artificial intelligence development tools, which saw an unknown threat actor inject a malicious prompt into a source code ...

AWS backs Open VSX as Rust survey shows VS Code decline

AI-first editors and agent-driven tooling intensify competition in the IDE market The Open VSX registry, used for installing extensions in editors compatible with Visual Studio Code (VS Code), will ...
InfoWorld

Possible software supply chain attack through AWS CodeBuild service blunted

An AWS misconfiguration in its code building service could have led to a massive number of compromised key AWS GitHub code repositories and applications, say researchers at Wiz who discovered the ...
InfoWorld

AWS Transform now supports agentic modernization of custom code

But it still has to learn about custom patterns from devs or docs, and needs help to review and tune its output. Does AI-generated code add to, or reduce, technical debt? Amazon Web Services is aiming ...
Ars Technica

Here’s how carefully concealed backdoor in fake AWS files escaped mainstream notice

Researchers have determined that two fake AWS packages downloaded hundreds of times from the open source NPM JavaScript repository contained carefully concealed code that backdoored developers’ ...
SiliconANGLE

Amazon announces Q Developer preview in GitHub for AI-powered code generation and review

Amazon Web Services Inc. today announced a preview for its agentic artificial intelligence software development assistant Q Developer for Microsoft Corp.’s open-source code repository GitHub. Millions ...
Infosecurity-magazine.com

CodeBuild Flaw Put AWS Console Supply Chain At Risk

A critical misconfiguration in AWS CodeBuild has allowed attackers to seize control of core AWS GitHub repositories, including the JavaScript SDK that underpins the AWS Console. The issue, dubbed ...