The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...
SecurityWeek

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...

Pervaziv AI Releases AI Code Review 2.0 GitHub Action for Repository-Wide Security Scanning and AI-Powered Remediation

New release integrates automated security scanning, AI-powered remediation, and GitHub-native workflows for enterprise ...
Outlookindia

How Does Smart Contract Vulnerability Scanning Use AI-Driven Static And Dynamic Code Analysis?

As decentralized applications continue to grow in the blockchain environment, Smart Contract Vulnerability Scanning has become a core concept for building trust in decentralized finance and Web3.
Infosecurity-magazine.com

GitHub Adds Features to Automate Vulnerability Code Scanning

Hosting service GitHub has added a new feature to automatically set up code scanning on repositories. Called 'default setup,' the novel capability simplifies starting ...
Dark Reading

Vulnerability Scanning Triples, Leading to Two-Thirds Fewer Flaws

Companies have increased the cadence of application-security testing — with triple the number of applications scanned and 20 times more scans per application — compared to a decade ago, according to ...