AI coding tools exploded in 2025. The first security exploits show what could go wrong - Fortune

Prompt injection attacks against AI coding tools like Amazon Q were demonstrated to direct the tool to wipe local files and potentially disrupt AWS cloud infrastructure. Additionally, an unauthenticated code injection vulnerability in Langflow AI allowed threat actors to steal credentials and deploy malware.