OpenAI says no user data was touched in TanStack NPM worm
Digest more
A new wave of the Mini Shai-Hulud campaign compromised dozens of TanStack npm packages as part of a broader supply chain attack affecting developer ecosystems, including packages tied to UiPath, Mistral AI,
Hundreds of software packages are affected, once again threatening enterprise credentials on coders’ machines.
Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain attack.
An attacker poisoned 84 TanStack npm versions across 42 packages, stealing GitHub OIDC tokens and cloud keys while planting a dead-man's switch that nukes your system.
The new edition of the developer survey State of React has been released. Over 3500 developers share their experiences with the JavaScript library React and its ecosystem. The open-source library TanStack Query scores very well in user favor, while the ...