�� Malicious Trivy images (0.69.4–0.69.6) confirm a supply chain breach using a compromised service account token.

Attackers pushed trojanized builds, spread an npm worm, defaced 44 repos in minutes, and deployed Kubernetes wiper payloads.

��Read → https://thehackernews.com/2026/03/trivy-hack-spreads-infostealer-via.html