Skip to main content
Scour
Discover
Docs
Login
Sign Up
You are offline. Trying to reconnect...
Copied to clipboard
Unable to share or copy to clipboard
Back to article
Wiz Blog
7h
7 hours ago
MCP Auto-Execution: From Git Clone to Cloud Compromise in Amazon Q VS Code Extension
(opens in new tab)
Covers
3 stories
See all stories this covers
including
Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536
Covered by
3 sources
See all sources covering this story
including
The Register
,
SecurityWeek
Love
Like
Not for me
Save
|
|
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Covers 3 related stories
Check Point Research
·
17w
17 weeks ago
Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536
Discussed on
Hacker News
Love
Like
Not for me
Save
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Actions for Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536
AWS
·
3d
3 days ago
CVE-2026-12957 and CVE-2026-12958 - Issues in Language Servers for AWS and Amazon Q Developer Plugins
Love
Like
Not for me
Save
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Actions for CVE-2026-12957 and CVE-2026-12958 - Issues in Language Servers for AWS and Amazon Q Developer Plugins
GitHub
·
5h
5 hours ago
Arbitrary Code Execution in Language Servers for AWS
Love
Like
Not for me
Save
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Actions for Arbitrary Code Execution in Language Servers for AWS
Covered in 3 articles
The Register
·
4h
4 hours ago
Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds
Love
Like
Not for me
Save
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Actions for Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds
SecurityWeek
·
4h
4 hours ago
Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories
Love
Like
Not for me
Save
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Actions for Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories
The Hacker News
·
5h
5 hours ago
Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
Love
Like
Not for me
Save
See related topics
Feeds
Share
Report
Off Topic
Harmful Content
Low Quality
Spam
Misleading
Duplicate
Wrong Language
Block Domain
Actions for Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
Keyboard Shortcuts
Navigation
Next / previous post
j
/
k
Open post
o
or
Enter
Preview post
v
Post Actions
Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s
Recommendations
Add interest / feed
Enter
Not interested
x
Go to
Home
g
h
Interests
g
i
Feeds
g
f
Likes
g
l
History
g
y
Changelog
g
c
Settings
g
s
Discover
g
b
Search
/
Pagination
Next page
n
Previous page
p
General
Show this help
?
Submit feedback
!
Close modal / unfocus
Esc
Press
?
anytime to show this help
Like
Save
Not for me
Report