gl o
signal
← All stories
Signal 1 source ·

Many npm packages for Mistral, UiPath, TanStack's web dev tools like react-router, and more were compromised, likely in the Mini Shai-Hulud supply chain attack

- Immediate triage: Run shasum -a 256 on all router_init.js files in your dependency tree.
Many
Covered by: techmeme
Read on socket.dev →