Trivy supply chain attack steals cloud credentials

The compromise of Aqua Security's Trivy ecosystem is a catastrophic breach of trust, weaponizing the very tools developers use to secure their infrastructure.

• –Attackers hijacked official GitHub repositories via a pull_request_target exploit, force-pushing malicious commits to 75 out of 76 existing version tags.
• –The infostealer payload specifically targets high-value secrets including AWS/GCP/Azure credentials, Kubernetes tokens, and SSH keys.
• –By poisoning existing tags (e.g., @v0.34.2), the attack bypassed standard version pinning, proving that only commit-SHA pinning offers true protection in GitHub Actions.
• –The incident underscores a systemic weakness in open-source maintenance where automated workflows can be turned into lateral movement vectors.
• –Meta-level suppression of the news on platforms like Hacker News has delayed critical awareness for teams currently running compromised pipelines.