Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...
The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...
The Trivy supply chain compromise gave attackers a way to deliver malicious infostealer code. Learn how it happened and ...
Anthropic has released a research preview of Claude Code Security, a security solution that scans code for vulnerabilities and uses AI to fix them. Claude Code Security is provided as a feature of ...
While competing tools address fragments of OpenClaw security, ClawSecure is the only platform combining scanning, ...
Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two ...
The open-source supply chain hack represents “meaningful industry-wide risk”, according to an industry expert.
Open VSX bug misread scanner failures as clean results, letting malicious VS Code extensions go live before patch in v0.32.0.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results