{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreidnsrelkeinuh6ng4wyhrkeyqopjbmnacauilt6pwhdqz3vdeemhm",
    "uri": "at://did:plc:iir655mcoipvnewhnkv6fb3u/app.bsky.feed.post/3mhlqytiwn2j2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreicki5kjrtyd5znkougvefdtj6nv7m5vzr7nq5u3mtlrnlt3vphh4i"
    },
    "mimeType": "image/jpeg",
    "size": 137075
  },
  "path": "/news/security/trivy-vulnerability-scanner-breach-pushed-infostealer-via-github-actions/",
  "publishedAt": "2026-03-21T17:32:26.000Z",
  "site": "https://www.bleepingcomputer.com",
  "tags": [
    "article"
  ],
  "textContent": "\nThe Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed credential-stealing malware through official releases and GitHub Actions.",
  "title": "Trivy vulnerability scanner breach pushed infostealer via GitHub Actions"
}