Trivy Supply Chain Attack Expands With New Compromised Docker Images

Researchers identified additional compromised Trivy Docker images (tags 0.69.5 and 0.69.6) linked to a supply-chain attack that originally targeted version 0.69.4; the malicious artifacts contain TeamPCP-associated credential-stealing components and typosquatted C2 domains, and the incident included GitHub repository tampering via a compromised service account token, affecting CI/CD pipelines and developer environments.