MUO on MSN

Extensions, plugins, and add-ons aren't the same thing — and I've been mixing them up for years

Three names, three roles, and I mixed them up without realizing it.
Microsoft

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...