SecurityWeek reports that OpenAI rotated code-signing certificates after repositories containing them were compromised in a TanStack supply-chain attack, highlighting the exposure of AI vendors and developer tools to open source package ecosystem compromises.
OpenAI Hit by TanStack Supply Chain Attack
SecurityWeek reports that OpenAI rotated code-signing certificates after repositories containing them were compromised in a TanStack supply-chain attack, highlighting the exposure of AI vendors and developer tools to open source package ecosystem compromises.
Source: Securityweek