Trivy Supply Chain Attack Targets CI/CD Secrets

A supply-chain attack against the Trivy open-source scanner compromised its GitHub Actions and release pipeline in February–March, allowing an attacker to force-push malicious code to trivy-action and setup-trivy releases and publish compromised Trivy Docker images and a trojanized Trivy version. The deployed credential-harvesting infostealer scans CI/CD environments for SSH keys, AWS/GCP/Azure credentials, Kubernetes tokens, Docker and environment files, and exfiltrates data using AES-256-CBC with RSA-4096 or by uploading to public GitHub repos; Aqua Security recommends rotating secrets, auditing workflows, removing affected versions, and searching for signs of compromise.