# Widely used Trivy security scanner compromised in ongoing supply chain attack

_Sunday, March 22, 2026 at 10:09 AM EDT · Cybersecurity · Latest · Tier 2 — Notable_

![Widely used Trivy security scanner compromised in ongoing supply chain attack — Primary](https://cdn.arstechnica.net/wp-content/uploads/2020/10/malware-1000x648.jpg)

Trivy, a widely used open-source security scanner for containers and infrastructure-as-code, was compromised in an ongoing supply chain attack, Ars Technica reported.

Trivy is used by thousands of organizations to scan Docker containers and Kubernetes clusters. A compromise of the scanner is particularly dangerous because security tools run with elevated privileges.

The incident adds to a growing list of supply chain attacks targeting developer and security tooling.

## Sources

- [Ars Technica](https://arstechnica.com/security/2026/03/widely-used-trivy-scanner-compromised-in-ongoing-supply-chain-attack/)

---
Canonical: https://techandbusiness.org/newswire/Xx2NJhLQJqQVPtk0mDT6lC
Retrieved: 2026-05-10T02:34:10.915Z
Publisher: Tech & Business (techandbusiness.org)