#tanstack

🖼️

0

Support for TanStack Start - Vercel

Vercel News·Austin Merrick·4 days ago

#qVqeZxSa

#vercel #tanstack #start #nitro #vite #import

Vercel now detects and deploys TanStack Start, a full-stack framework powered by TanStack Router for React and Solid.

15s

Deep Dive: TanStack npm supply-chain compromise

🖼️

0

Deep Dive: TanStack npm supply-chain compromise

DEV Community·Shruti Kapoor·17 days ago

#LwXVZQXx

#githubactions #javascript #npm #security #tanstack #github

This post is part of my weekly newsletter - Top 5 in Frontend and AI. Subscribe so you can deep dives...

15s

OpenAI caught in TanStack npm supply chain chaos after employee devices compromised

🖼️

0

OpenAI caught in TanStack npm supply chain chaos after employee devices compromised

theregister·Carly Page·18 days ago

#pep0crQD

#x2f #security #openai #npm #tanstack #credentials

Attackers stole a limited amount of internal credential material after malware hidden in poisoned packages reached two staff machines

15s

What LucidShark Would Have Caught Before the TanStack Attack Landed

🖼️

0

What LucidShark Would Have Caught Before the TanStack Attack Landed

DEV Community·Toni Antunovic·18 days ago

#sShW1YZE

#signal #supplychainsecurity #lucidshark #package #tanstack #fullscreen

The Mini Shai-Hulud worm compromised 84 @tanstack packages in six minutes, bypassing valid OIDC provenance and 2FA. Here is exactly what LucidShark SCA surfaces in your editor before the malicious payload runs.

15s

GHSA-9M65-766C-R333: GHSA-9M65-766C-R333: Type Confusion in Seroval Leading to Unintended Function Execution in TanStack Start

🖼️

0

GHSA-9M65-766C-R333: GHSA-9M65-766C-R333: Type Confusion in Seroval Leading to Unintended Function Execution in TanStack Start

DEV Community·CVE Reports·18 days ago

#Yztfpznv

#security #cve #cybersecurity #ghsa #tanstack #seroval

From Dev.to - security: GHSA-9M65-766C-R333: GHSA-9M65-766C-R333: Type Confusion in Seroval Leading to Unintended Function Execution in TanStack Start

15s

The TanStack npm Attack Shows Why pnpm 11 Matters

🖼️

0

The TanStack npm Attack Shows Why pnpm 11 Matters

DEV Community·Chioma Halim·19 days ago

#QOemZ3dw

#cicd #javascript #npm #security #packages #pnpm

On April 28, 2026, pnpm 11 was released with some of the strongest security defaults we've seen from...

15s

42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now

🖼️

0

42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now

DEV Community·VIKAS·20 days ago

#WxcKHU1i

#vulnerability #tanstack #fullscreen #packages #github #article

A deep technical breakdown of the May 2026 TanStack supply chain attack. 84 malicious package versions were published through TanStack's own trusted CI pipeline. Here's the full attack chain, IOCs, and step-by-step remediation.

15s

Supply Chain Worm Compromises Mistral AI, Guardrails AI and TanStack Packages

🖼️

0

Supply Chain Worm Compromises Mistral AI, Guardrails AI and TanStack Packages

DEV Community·Achin Bansal·20 days ago

#QzWZONiL

#cybersecurity #ai #automation #software #packages #tanstack

From Dev.to - cybersecurity: Supply Chain Worm Compromises Mistral AI, Guardrails AI and TanStack Packages

15s

TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm

🖼️

0

TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm

DEV Community·Teruo Kunihiro·20 days ago

#nuInJIyz

#pypi #comment #security #npm #tanstack #github

How the TanStack npm compromise fits into the broader Mini Shai-Hulud campaign across npm, PyPI, GitHub Actions, IDE hooks, and CI/CD secrets.

15s

Why Your Nextjs UI Flickers: TanStack Query vs useEffect

🖼️

0

Why Your Nextjs UI Flickers: TanStack Query vs useEffect

DEV Community·nishchal singh·20 days ago

#iTbkg64n

#rendering #nextjs #performance #react #strategy #updates

A page can load quickly and still feel unstable. That usually happens when the initial render...

15s

Testing TanStack Router + Query apps in the real browser

🖼️

0

Testing TanStack Router + Query apps in the real browser

DEV Community·Kevin Julián Martínez Escobar·20 days ago

#Sp28lNPu

#testing #tanstack #react #test #fullscreen #real

The first time you try to test a TanStack app the way the React Testing Library docs suggest, the...

15s

Postmortem: TanStack NPM supply-chain compromise

🖼️

0

Postmortem: TanStack NPM supply-chain compromise

DEV Community·Aman Shekhar·20 days ago

#TDcp9jdR

#ai #machinelearning #techtrends #software #package #tanstack

Ever had that sinking feeling when you realize your project's been compromised? It's like finding out...

15s

TanStack npm Packages Compromised in "Mini Shai-Hulud" Supply Chain Attack

🖼️

0

TanStack npm Packages Compromised in "Mini Shai-Hulud" Supply Chain Attack

DEV Community·BeyondMachines·20 days ago

#70BUnqt9

#cybersecurity #infosec #software #coding #tokens #monitor

The TanStack npm ecosystem was hit by a supply chain attack that hijacked legitimate build pipelines to distribute malware with valid SLSA provenance.…

15s

What now? explaining the TanStack Supply Chain Attack

🖼️

0

What now? explaining the TanStack Supply Chain Attack

DEV Community·Paulo Victor Leite Lima Gomes·21 days ago

#8EbSY05S

#ai #tech #cybersecurity #cache #tanstack #package

View the full article

Create a free account to read full articles inline — no redirect to the original site.

Create account Log in

Cache-poisoning caper turns TanStack npm packages toxic

🖼️

0

Cache-poisoning caper turns TanStack npm packages toxic

theregister·Tim Anderson·21 days ago

#IuHvdWvs

#x2f #github #development #cybercrime #security #tanstack

Six-minute supply chain blitz pushed 84 malicious versions with credential theft and disk-wiping code

15s

Your next supply-chain attack will come from a package you've never heard of

🖼️

0

Your next supply-chain attack will come from a package you've never heard of

DEV Community·LayerZero·21 days ago

#pjPVzS73

#security #webdev #ai #fullscreen #tanstack #compromised

The TanStack npm compromise wasn't sophisticated — one maintainer's token was enough. Here are the three changes that actually shrink your blast radius.

15s

TanStack npm Supply-Chain Attack: Full Postmortem

🖼️

0

TanStack npm Supply-Chain Attack: Full Postmortem

DEV Community·Michael Smith·21 days ago

#5niYlAel

#discuss #news #tech #tanstack #security #package

TanStack npm Supply-Chain Attack: Full Postmortem - Complete guide and honest review for 2026.

15s

CVE-2026-45321: CVE-2026-45321: Critical Supply Chain Compromise in @tanstack Packages via GitHub Actions Misconfiguration

🖼️

0

CVE-2026-45321: CVE-2026-45321: Critical Supply Chain Compromise in @tanstack Packages via GitHub Actions Misconfiguration

DEV Community·CVE Reports·21 days ago

#W9alhWK0

#security #cve #cybersecurity #software #tanstack #router

From Dev.to - security: CVE-2026-45321: CVE-2026-45321: Critical Supply Chain Compromise in @tanstack Packages via GitHub Actions Misconfiguration

15s

Generate TanStack Query Hooks from OpenAPI: Own the Last Mile

🖼️

0

Generate TanStack Query Hooks from OpenAPI: Own the Last Mile

DEV Community·D.S.·21 days ago

#d8FA7ync

#tanstack #react #openapi #query #hooks #fullscreen

When you go API-First, your OpenAPI contract should be the single source of truth across your entire...

15s

React Hook Form vs. TanStack Form vs. Formisch: React Form Libraries Compared

🖼️

0

React Hook Form vs. TanStack Form vs. Formisch: React Form Libraries Compared

DEV Community·Oluwawunmi Adesewa·23 days ago

#2JcY370z

#typescript #react #javascript #webdev #schema #form

I work on Formisch, so I'm obviously biased. We published this comparison on our blog last month and...

15s

Menu

Support for TanStack Start - Vercel

Deep Dive: TanStack npm supply-chain compromise

OpenAI caught in TanStack npm supply chain chaos after employee devices compromised

What LucidShark Would Have Caught Before the TanStack Attack Landed

GHSA-9M65-766C-R333: GHSA-9M65-766C-R333: Type Confusion in Seroval Leading to Unintended Function Execution in TanStack Start

The TanStack npm Attack Shows Why pnpm 11 Matters

42 @tanstack/* Packages Were Compromised on npm: What Happened, How It Works, and What You Must Do Right Now

Supply Chain Worm Compromises Mistral AI, Guardrails AI and TanStack Packages

TanStack Was Not the Whole Story: Mini Shai-Hulud Was an npm/PyPI Supply-Chain Worm

Why Your Nextjs UI Flickers: TanStack Query vs useEffect

Testing TanStack Router + Query apps in the real browser

Postmortem: TanStack NPM supply-chain compromise

TanStack npm Packages Compromised in "Mini Shai-Hulud" Supply Chain Attack

What now? explaining the TanStack Supply Chain Attack

Cache-poisoning caper turns TanStack npm packages toxic

Your next supply-chain attack will come from a package you've never heard of

TanStack npm Supply-Chain Attack: Full Postmortem

CVE-2026-45321: CVE-2026-45321: Critical Supply Chain Compromise in @tanstack Packages via GitHub Actions Misconfiguration

Generate TanStack Query Hooks from OpenAPI: Own the Last Mile

React Hook Form vs. TanStack Form vs. Formisch: React Form Libraries Compared