Information security
fromSecurityWeek
2 days agoCheckmarx Jenkins AST Plugin Compromised in Supply Chain Attack
A modified Checkmarx Jenkins AST plugin was published via the Jenkins Marketplace, prompting users to update to a safe version. Supply-chain compromise traces to prior repository access.