SECURITYBLEEPING COMPUTER
Official CheckMarx Jenkins package compromised with infostealer
A rogue version of Checkmarx's Jenkins Application Security Testing plugin was published on the Jenkins Marketplace, compromising the security of users. The compromised plugin is a version of the official CheckMarx Jenkins package. This incident poses a significant risk to users' sensitive information.