SecurityWeek

Aqua’s Trivy Vulnerability Scanner Hit by Supply Chain Attack

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

Trivy vulnerability scanner breach pushed infostealer via GitHub Actions

The Trivy vulnerability scanner was compromised in a supply-chain attack by threat actors known as TeamPCP, which distributed ...
Bleeping Computer

Apiiro unveils free scanner to detect malicious code merges

Security researchers at Apiiro have released two free, open-source tools designed to detect and block malicious code before they are added to software projects to curb supply chain attacks. The two ...
Security Boulevard

Trivy Scanner Compromise Explained and What it Means For Your SaaS and CI/CD Security

The Trivy supply chain compromise gave attackers a way to deliver malicious infostealer code. Learn how it happened and ...
GIGAZINE

Introducing Claude Code Security, which scans your code for vulnerabilities and suggests fixes

Anthropic has released a research preview of Claude Code Security, a security solution that scans code for vulnerabilities and uses AI to fix them. Claude Code Security is provided as a feature of ...

ClawSecure: The Only Complete Security Solution for OpenClaw Agents

While competing tools address fragments of OpenClaw security, ClawSecure is the only platform combining scanning, ...

AI Can't Replace What It Can't See: What Wall Street Continually Gets Wrong About Cybersecurity

Mature cybersecurity companies have built something a general-purpose AI cannot replicate quickly: proprietary threat ...
The Hacker News

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

Open VSX bug misread scanner failures as clean results, letting malicious VS Code extensions go live before patch in v0.32.0.
Dark Reading

Claude Code Security Shows Promise, Not Perfection

Claude Code Security made a big splash when it was introduced last week, but it may be too early to call it as disruptive as the markets suggested. Anthropic unveiled Claude Code Security on Feb. 20, ...