Open Source Beat

Screenshot of Docker Hub with a warning banner showing compromised Trivy image versions alongside a timeline of the attack from March 19-23, 2026.

The Trivy Supply Chain Ambush: How a Vulnerability Scanner Became the Attack Vector

Between March 19 and 23, 2026, threat actors compromised Aqua Security's CI/CD pipeline and poisoned Trivy images with malware. If you pulled the wrong version, your secrets are at risk.

4 min read 4 days, 4 hours ago

#ci/cd pipeline compromise

The Trivy Supply Chain Ambush: How a Vulnerability Scanner Became the Attack Vector

Stay in the loop