SECURITYTHE REGISTER
OpenAI caught in TanStack npm supply chain chaos after employee devices compromised
OpenAI was caught up in the TanStack npm supply chain compromise after employee devices were compromised, forcing the company to rotate signing certificates for several desktop products. The incident is part of a wider campaign targeting npm ecosystems and developer infrastructure. No customer data or production systems were compromised.
Mentioned