SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Infosecurity Magazine

TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise

Researchers attributed the compromise to TeamPCP, the same threat group linked to the aforementioned Trivy compromise and ...
The Next Web

IBM Cloud, Nutanix, SUSE, and OVHcloud have all independently chosen Traefik as their Ingress NGINX replacement

The Kubernetes community retired Ingress NGINX this month after years of under-resourcing. The migration scramble it ...

Traefik Becomes the De Facto Standard for Kubernetes Networking as Major Platform Vendors Migrate from Ingress NGINX

IBM Cloud, Nutanix, OVHcloud, SUSE, TIBCO, and others standardize on Traefik Proxy, the only open source drop-in replacement for ingress NGINX with over 90% annotation coverage, as the ...
The Tech Edvocate

Compromised Trivy Vulnerability Scanner Exposes Supply Chain Risks

Spread the loveThe cybersecurity landscape has been shaken by a significant supply chain attack involving the popular Trivy vulnerability scanner, a tool widely used in DevOps environments. Developed ...
CSO Online

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ ...
Techzine Europe

NanoClaw integrates with Docker to bring trust to AI agents

AI agent platform NanoClaw launched just last month, but it is already fully integrating with Docker. With it, every agent can run in its own container.
GitHub

Docker Hub and GHCR download tracker with Grafana dashboard

Collects download statistics from Docker Hub and GHCR for your public container images and serves the data via a lightweight HTTP API. Designed for Grafana dashboards but works with any tool that can ...