Give us a ☆ on github

  • Ben-Hur Santos Ott

    AI Agents Security | AppSec | DevSecOps

  • Tags
  • Archive
  • Authors
  • RSS
  • Search
    Mar 26, 2026

    Trivy and LiteLLM was compromised

    Mar 26, 2026 - ⧖ 1 min

    The Trivy GH Action was compromised and it affected a lot of other open source tools, creating an impactful attack chain.

    Here is the Snyk Post: https://snyk.io/pt-BR/articles/poisoned-security-scanner-backdooring-litellm/

    • Ben-Hur Santos Ott Ben-Hur Santos Ott
    Mar 26, 2026 - ⧖ 1 min
    • supply-chain
    • llm
    ← How you can be attacked by an MCP Server
    📄 View source
    Powered by Marmite | CC-BY_NC-SA