github.com/aws/aws-sdk-go is vulnerable to information disclosure. The library sends an unencrypted hash of the plaintext alongside the ciphertext as a metadata field which could be used to brute force the plaintext, when the hash is readable to the attacker.