TanStack Supply Chain Attack Compromised Two OpenAI Employee Devices, Credentials Stolen

OpenAI disclosed that two employee devices in its corporate environment were compromised via the Mini Shai-Hulud malware delivered through the TanStack supply chain attack. Credential material from OpenAI code repositories was stolen; OpenAI states no user data, production systems, or intellectual property were compromised or modified. The company investigated, contained the incident, and pushed macOS updates to affected devices. This demonstrates the downstream blast radius of npm supply chain attacks reaching into high-value corporate environments. Organizations using TanStack packages should audit for Mini Shai-Hulud indicators and rotate any credentials from developer machines that may have installed affected versions.