Back to all posts
1 min readfrom InfoQ

Open Source Security Tool Trivy Hit by Supply Chain Attack, Prompting Urgent Industry Response

Open Source Security Tool Trivy Hit by Supply Chain Attack, Prompting Urgent Industry Response

A major security incident affecting the widely used open source vulnerability scanner Trivy has exposed critical weaknesses in software supply chain security, after maintainers confirmed that a malicious release was briefly distributed to users.

By Craig Risi

Want to read more?

Check out the full article on the original site

View original article

Tagged with

#digital transformation in spreadsheet software
#rows.com
Open Source Security Tool Trivy Hit by Supply Chain Attack, Prompting Urgent Industry Response