{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreievx32vyjotwxuyqb237vnxialw7gi6skvjxfhjldo7jlds4cnye4",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mhslmk3plm32"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreib2p54kzhc6j464joshqofhorngzvm3y4bcujwlr7mjvukply7ufa"
    },
    "mimeType": "image/jpeg",
    "size": 580448
  },
  "path": "/2026/03/teampcp-hacks-checkmarx-github-actions.html",
  "publishedAt": "2026-03-24T10:38:00.000Z",
  "site": "https://thehackernews.com",
  "textContent": "Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the Trivy supply chain attack.\nThe workflows, both maintained by the supply chain security company Checkmarx, are listed below -\n\ncheckmarx/ast-github-action\ncheckmarx/kics-github-action\n\nCloud security",
  "title": "TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials"
}