AWS CodeBuild ‘CodeBreach’ Flaw Exposed GitHub Repos to Hijacking

A critical vulnerability, "CodeBreach," in AWS CodeBuild exposed GitHub repositories, including the AWS JavaScript SDK, to hijacking via a misconfigured webhook regex flaw. Discovered in August 2025 and patched in September, it risked massive supply chain attacks on the AWS Management Console. The incident underscores the need for robust cloud security practices.