Trivy scanner compromised in supply-chain attack

The widely used Trivy security scanner has been compromised as part of an ongoing supply-chain attack, posing a significant risk to system administrators. Users are advised that this incident likely necessitates rotating sensitive credentials and secrets over the weekend. The compromise highlights the vulnerabilities inherent in software supply chains and the potential for widespread impact when critical security tools are affected.