Techly NewsGet the app

Get the latest tech news

Trivy ecosystem supply chain briefly compromised


## Summary On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy v0.69.4 release, force-push 76 of 77 version tags in `aquasecurity/trivy-action` to credent...

None

Get the Android app

Or read this on Hacker News

« Profiling Hacker News users based on their comments
Trivy Supply Chain Attack Spreads, Triggers Self-Spreading CanisterWorm Across 47 npm Packages »