Trivy Supply Chain Attack Targets CI/CD Secrets

Overview

A threat actor used the open source security tool to deploy an infostealer into CI/CD workflows and steal cloud credentials, SSH keys, tokens, and other sensitive secrets.

Organisations Involved

The following organisations are mentioned in relation to this incident: Trivy Supply Chain Attack Targets.

Multi-Source Coverage

This event has been reported across multiple outlets:

Trivy Supply Chain Attack Targets CI/CD Secrets — darkreading

Sources: darkreading. Aggregated by Cybernews Agency pipeline.

AR-ID	08ad594d-0fd1-4fa2-bcc9-d4803033d353
NEWS-ID	fa6e0ee8-cf53-47a3-a881-975eb4394ddb
Article type	trending
Categories	ttp
Quality score	0.9190
Generation timestamp	2026-03-30 06:47 UTC
Publish timestamp	2026-03-30 06:47 UTC
Editor corrections	[{"by": "cn-editor", "note": "passed quality checks", "score": 0.919}]

Trivy Supply Chain Attack Targets CI/CD Secrets

TREND SUMMARY

Overview

Organisations Involved

Multi-Source Coverage

DEBUG — Testing Information