Trivy Supply Chain Attack Escalates as TeamPCP Hijacks 75 GitHub Action Tags, Defaced Aqua Security Repositories, and Spreads to npm
Threat actor TeamPCP compromised the widely used Trivy vulnerability scanner through a retained access token from an earlier incomplete remediation, injecting credential-stealing payloads into official releases and GitHub Actions while defacing 44 Aqua Security repositories.
4 min read3 sources