Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...
TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...
The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
While competing tools address fragments of OpenClaw security, ClawSecure is the only platform combining scanning, ...
The Trivy supply chain compromise gave attackers a way to deliver malicious infostealer code. Learn how it happened and ...
Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two ...
The open-source supply chain hack represents “meaningful industry-wide risk”, according to an industry expert.
Claude Code Security made a big splash when it was introduced last week, but it may be too early to call it as disruptive as the markets suggested. Anthropic unveiled Claude Code Security on Feb. 20, ...
Open VSX bug misread scanner failures as clean results, letting malicious VS Code extensions go live before patch in v0.32.0.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results