Shai Hulud attack ships signed malicious TanStack, Mistral npm packages

A significant software supply-chain attack has been reported, involving the 'Shai-Hulud' malware that has compromised numerous packages within open-source software ecosystems. The attack specifically targeted malicious TanStack and Mistral npm packages, raising concerns about the security of software supply chains and the potential for widespread impact on developers and organizations relying on these packages.