Supply Chains in the Crosshairs: Scan and Simulate Multi-Stage Attacks with Trajan

Trajan: CI/CD Security Scanner

Trajan scans CI/CD pipelines for security vulnerabilities that attackers use to compromise software supply chains. It supports GitHub Actions, GitLab CI, Azure DevOps, Jenkins, and JFrog.

What it does

Trajan parses workflow YAML files, builds dependency graphs, runs detection plugins, and validates exploitability through built-in attack capabilities.

  • 32 detection plugins across multiple CI/CD platforms
  • 24 attack plugins across multiple CI/CD platforms
  • Graph-based analysis with taint tracking and gate detection
  • Browser-based scanner via WebAssembly (no backend needed)
  • Attack chains for multi-stage sequences with automatic context passing

Platform coverage

Platform Detections Attacks Enumerate
GitHub Actions 11 9 token, repos, secrets
GitLab CI 8 3 token, projects, groups, secrets, runners, branch-protections
Azure DevOps 6 9 token, projects, repos, pipelines, connections, agent-pools, users, groups, and more
Jenkins 7 3 access, jobs, nodes, plugins
JFrog scan-only

Browser extension

Trajan also compiles to a WebAssembly binary that runs entirely in the browser as a single HTML file. It uses the same detection engine, attack plugins, and enumeration logic as the CLI, just compiled to WASM. The web version of Trajan enables low-friction delivery into target environments as part of an assessment.

Install & Use

Support Our Threat Intelligence

If you find our technology report and cybersecurity news helpful, consider supporting our work.

Crypto QR Code
USDT (TRC20):
TN8BdV8cp4T1Cd28gK9qTAnZknzzuwyUtm
USDT (ERC20):
0x3725e1a7d3bc5765499fa6aaafe307fabcd75bce