List of resources on the Trivy supply chain compromise

This is where the screenshot above is from, includes a timeline and IoCs
View Tweet
@tuckner sent me this githhub issue (interesting comments too) github.com/aquasecurity/t…
Contains a link to a crowdstrike blog post
View Tweet
This is two weeks after a DIFFERENT incident where their openVSX VSCode extension was compromised (cc @tuckner)
View Tweet
@tuckner
View Tweet
Generated by Thread Navigator
Press ⌘ + S to quick-export
