VS Code supply chain attack hits GitHub, OpenAI, and Mistral AI
Source: Notebookcheck
Published:
<p>GitHub confirmed today that the breach of roughly 3,800 internal repositories traces back to a poisoned version of the Nx Console VS Code extension, itself a casualty of the TanStack npm supply chain attack. The campaign, attributed to threat actor group TeamPCP and codenamed Mini Shai-Hulud, has