IN March 2026, attackers turned trusted GitHub Actions into credential stealing weapons, with TeamPCP (claims) linked to the second Trivy compromise that injected a credential stealer into 76 of 77 version tags of aquasecurity/trivy-action and CVE-2026-33634 (CVSS 9.4). Days later, the Checkmarx KICS GitHub Action was compromised with malware injected into all its Git tags.
The article notes that CanisterWorm, a self-propagating npm worm, spread backdoors across the JavaScript ecosystem, and that credential stealers were planted in PyPI packages targeting litellm and telnyx, attributed to TeamPCP (claims). It emphasises that GitHub Actions run with elevated privileges and secrets access, making them high‑value targets in the software supply chain.
The piece argues that defence in depth matters, describing ten independent layers in the StepSecurity platform to prevent exfiltration, detect runtime anomalies, and respond organisation‑wide before attackers succeed. It also highlights features such as Harden Runner in block and lockdown modes, Policy Driven PRs, and imposter commit detection as elements of the overall approach.