Trivy supply chain compromise: What Docker Hub users should know | Docker
… This post summarizes what happened, what Docker did in response, and what you should do if you use Trivy.
Tracked topic
Trivy is an open source vulnerability scanner for container images, files, and code that detects known security issues in software dependencies.
… This post summarizes what happened, what Docker did in response, and what you should do if you use Trivy.
Trivy, KICS, and the shape of supply chain attacks so far in 2026 | Docker