Security News Shai Hulud attack ships signed malicious TanStack, Mistral npm packages BleepingComputer Daniel Bender 12 May 2026 Share A large-scale software supply-chain attack involving the "Shai-Hulud" malware has compromised hundreds of packages across open-source software ecosystems.
