Socket uncovers 'Mini Shai-Hulud' worm in TanStack

// 1h agoSECURITY INCIDENT

Socket uncovers 'Mini Shai-Hulud' worm in TanStack

Socket's AI security engine flagged the "Mini Shai-Hulud" worm targeting the TanStack ecosystem, which hijacked 84 legitimate package versions via a sophisticated GitHub Actions cache poisoning attack. The malware sought to exfiltrate CI/CD secrets and AI tool configurations before being deprecated within an hour.

// ANALYSIS

–Attackers used pull_request_target abuse to poison GitHub Actions caches and extract OIDC tokens for "Trusted Publishing."
–The malware specifically targeted AI toolchains like Claude Code, signaling a new frontier in high-value credential theft.
–Socket's AI-driven detection caught the malicious publishes within six minutes, significantly limiting the infection window.
–This incident highlights the inherent risks of automated CI/CD pipelines and the need for more granular permission controls on OIDC tokens.
–Developers should rotate all secrets and audit GitHub Actions for pull_request_target vulnerabilities immediately.

// TAGS

sockettanstacksecurityai-codingci-cdsupply-chain-attackmalware

DISCOVERED

1h ago

2026-05-15

PUBLISHED

1h ago

2026-05-15

RELEVANCE

8/ 10

AUTHOR

Theo - t3․gg

// KEEP READING

More AI developer news from the feed

EXPLORE FULL FEED

VIDEO1h ago

OpenAI demos ChatGPT for Excel financial model auditing

OpenAI showcases how its ChatGPT for Excel integration enables finance teams to review workbooks, map tabs, and apply mechanical fixes directly where the work happens. The tool generates issue logs to catch formula errors and reduce model risk prior to manual review.

SECURITY1h ago

Big Sleep agent catches SQLite zero-day

Google DeepMind and Project Zero’s AI agent, Big Sleep, identified a stack buffer underflow in SQLite before it reached production. The milestone marks the first public instance of an AI agent discovering a zero-day memory-safety issue in a major, real-world software project.

SECURITY1h ago

TanStack Router hit by massive supply chain attack

The popular TanStack Router framework was the primary target of a sophisticated npm supply chain attack dubbed "Mini Shai-Hulud," which compromised 42 packages across the @tanstack ecosystem and namespaces for Mistral AI and UiPath. By poisoning the GitHub Actions cache to hijack the OIDC-based release pipeline, attackers published 84 malicious versions carrying valid SLSA provenance while harvesting cloud credentials and installing a destructive wiper payload. The TanStack team has issued an "All Clear" as of May 15, 2026, but the incident marks a significant escalation in the complexity of package manager exploits.