🚨 Breaking: Trivy GitHub Actions supply chain attack – 75 out of 76 version tags compromised.

If your CI/CD pipelines reference “aquasecurity/trivy-action” by version tag, you’re likely running malware right now.

At Socket, we identified that an attacker force-pushed nearly