ZDNet

AWS's AI code reviewer now spots Log4Shell-like bugs in Java and Python code

Amazon Web Services (AWS) has updated the 'detectors' in its CodeGuru Reviewer tool to seek out log injection flaws like the recently disclosed Log4Shell bug in the popular Java logging library Log4J.
TechRadar

Malicious Python packages dump your AWS secrets online

Multiple malicious Python packages leaking sensitive user information have been uncovered by security experts. In a blog post, Sonatype security researcher Ax Sharma says the packages: loglib-modules, ...