Mastodon Feed
Boosted by slightlyoff@toot.cafe ("Alex Russell"):
GossiTheDog@cyberplace.social ("Kevin Beaumont") wrote:
If you use Tanstack the packages all got compromised in npm with credential stealing malware. https://socket.dev/blog/tanstack-npm-packages-compromised-mini-shai-hulud-supply-chain-attack