Major Supply Chain Attack Hits TanStack, Mistral AI, and UiPath

TeamPCP hackers exploit security flaws, compromising 170 packages and targeting password managers for data theft. Secure your systems now.

By Content Team

May 12, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

TeamPCP hackers compromised over 170 packages across major software projects on May 11, including 42 TanStack packages, 65 UiPath packages, and Mistral AI's PyPI packages. The "Mini Shai-Hulud" attack exploited three security weaknesses to hijack TanStack's CI/CD pipeline and publish malicious packages that appeared legitimate with valid SLSA provenance certificates.

The malware steals developer credentials, API keys, cryptocurrency wallets, and cloud secrets. It spreads by using stolen tokens to publish infected versions of packages. For the first time, attackers targeted password managers like 1Password and Bitwarden, and used the decentralized Session network for harder-to-disrupt data exfiltration.

Users should immediately check for compromised package versions, rotate all credentials, and audit their GitHub Actions configurations.

Source: SecurityWeek

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Foster City Restores Phone and Email Services After Ransomware Attack

Mar 28, 2026

Qualcomm Zero-Day Exploited in Targeted Android Attacks

Mar 4, 2026

Hackers Exploit Critical Quest KACE Flaw to Take Over Management Systems

Mar 21, 2026

Major Security Breach Exposes 1.5 Million Users on AI Social Network Moltbook

Feb 1, 2026