84 npm artifacts across 42 @tanstack/* packages plus @squawk/*, @mistralai/*, and others, compromised by chaining a GitHub Actions “Pwn Request,” cache poisoning, and OIDC token theft. The worm self-propagates, harvests credentials, and ships a destructive daemon that wipes developer home directories. Confirmed downstream victims: OpenAI, Mistral, UiPath, Grafana Labs.
← Findings
TanStack and the Mini Shai-Hulud npm worm
84 npm artifacts across 42 @tanstack/* packages plus @squawk/*, @mistralai/*, others, chaining GitHub Actions Pwn Request, cache poisoning, OIDC token theft.