A high-severity vulnerability in Amazon's AI coding assistant allowed silent theft of AWS credentials via malicious code repositories.