Home / news

 

Trivy Supply Chain Attack Targets CI/CD Secrets

from DarkReading 23 March indexed on 24 March 2026 4:01

A threat actor used the open source security tool to deploy an infostealer into CI/CD workflows and steal cloud credentials, SSH keys, tokens, and other sensitive secrets.

Read more.

 

TOP