RE: https://fosstodon.org/@SocketSecurity/116275498711560605

Aqua Security’s GitHub org was briefly taken over during the Trivy incident.

Archived snapshots show attacker-created repos (e.g. tpcp-docs-*) with messages like “TeamPCP Owns Aqua Security,” indicating the attacker had write access to the org.

We updated our post with more details on this ongoing supply chain attack.