InfoQ

TanStack Details Sophisticated npm Supply Chain Attack That Compromised 42 Packages

TanStack has released a detailed postmortem describing a sophisticated supply-chain attack that compromised 42 npm packages ...
Infosecurity Magazine

Mini Shai-Hulud Hits TanStack npm Packages

A new wave of the Mini Shai-Hulud campaign compromised dozens of TanStack npm packages as part of a broader supply chain attack affecting developer ecosystems, including packages tied to UiPath, ...
Live Bitcoin News

The npm Package That Wipes Your Files When You Try to Stop It

An attacker poisoned 84 TanStack npm versions across 42 packages, stealing GitHub OIDC tokens and cloud keys while planting a ...
The Next Web

OpenAI says no user data was touched in the TanStack npm worm

OpenAI says no user data was accessed in the TanStack npm compromise: two corporate laptops, some credentials, and a forced macOS update.
Cryptopolitan on MSN

OpenAI says no user data exposed after TanStack npm supply chain attack hit employee devices

OpenAI confirmed that two employee devices were compromised, but found no evidence that user data, production systems, or ...
heise online

React Deep Dive: TanStack Router and TanStack Query - Part 2

The detailed view of a task is characterized by two technical features. Firstly, the path to the route contains a variable placeholder that must be filled with a task ID at runtime (/task/1, /task/2 ...