{"uuid": "c967c63f-11fc-4ee7-871d-5bed8f1c9b74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12957", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mpazh4cpkp24", "content": "Opening a repo could run a stranger's code as you, with your AWS keys attached.\n\nThat was Amazon Q Developer (CVE-2026-12957). It's patched.\n\nUse it? Move to 1.69.0 and confirm the build actually updated.", "creation_timestamp": "2026-06-27T08:17:12.993103Z"}