Official CheckMarx Jenkins package compromised with infostealer

Checkmarx has issued a warning regarding a compromised version of its Jenkins Application Security Testing (AST) plugin that was found on the Jenkins Marketplace. This rogue plugin is designed to steal information, raising significant security concerns for users relying on Jenkins for application security. The incident highlights the ongoing risks associated with third-party software integrations in development environments.