Amazon’s AI-powered Q Developer Extension for Visual Studio Code was compromised after a hacker injected data-wiping code through GitHub, prompting AWS to release a clean update and investigate a misconfigured permissions workflow.