The TanStack Breach and the Fragility of Trusted Code

On May 11, 2026, 42 @tanstack/* packages had malicious versions published (84 artifacts) via a hijacked release pipeline; the malware executed during installation to steal credentials (cloud keys, tokens, SSH keys, etc.). The exposure window was short but the campaign (Mini Shai-Hulud) spread to other maintainers and affected organizations including Mistral AI, UiPath, and at least two OpenAI employee devices; remediation steps include removing affected versions, reviewing lockfiles and CI/CD logs, isolating systems, and rotating credentials.