{"id":237174,"date":"2026-05-14T22:22:38","date_gmt":"2026-05-15T03:22:38","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2026\/05\/openai-confirms-security-breach-in-tanstack-supply-chain-attack"},"modified":"2026-05-14T22:22:38","modified_gmt":"2026-05-15T03:22:38","slug":"openai-confirms-security-breach-in-tanstack-supply-chain-attack","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2026\/05\/openai-confirms-security-breach-in-tanstack-supply-chain-attack","title":{"rendered":"OpenAI confirms security breach in TanStack supply chain attack"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/openai-confirms-security-breach-in-tanstack-supply-chain-attack.jpg\"><\/a><\/p>\n<p>OpenAI says two employees\u2019 devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and PyPI packages, causing the company to rotate code-signing certificates for its applications as a precaution.<\/p>\n<p>In a security advisory published today, the company said the incident did not impact customer data, production systems, intellectual property, or deployed software.<\/p>\n<p>The company says the breach is linked to the recent \u201cMini Shai-Hulud\u201d supply-chain campaign by the TeamPCP extortion gang, which targeted developers by slipping malicious updates into trusted and popular software packages.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>OpenAI says two employees\u2019 devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and PyPI packages, causing the company to rotate code-signing certificates for its applications as a precaution. In a security advisory published today, the company said the incident did not impact customer data, production systems, intellectual property, [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,1492],"tags":[],"class_list":["post-237174","post","type-post","status-publish","format-standard","hentry","category-robotics-ai","category-security"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/237174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=237174"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/237174\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=237174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=237174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=237174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}