Advertisement
SU
CRITICAL
Supply Chain
trivy-action Supply Chain Attack: Scattered Swarm Steals GitHub Secrets
Analysis of the trivy-action supply chain compromise by Scattered Swarm. Learn how GitHub runner secrets were stolen and critical mitigation steps.
Runtime Rebel Intel
5 min read·Mar 21, 2026
CRITICAL
Supply Chain
75 Trivy-Action GitHub Tags Hijacked in Supply Chain Attack
Attackers hijacked 75 tags in Aqua Security's Trivy GitHub Actions to exfiltrate CI/CD secrets, marking the second major breach in a single month.
Runtime Rebel Intel
3 min read·Mar 20, 2026