OpenAI caught in TanStack npm supply chain chaos after employee devices compromised

OpenAI has revealed that it was affected by the TanStack npm supply chain compromise, where attackers accessed internal credentials through two compromised employee devices. This incident is part of the broader 'Mini Shai-Hulud' campaign targeting npm ecosystems, although OpenAI confirmed that customer data and production systems remain secure. The company is now implementing enhanced supply chain security measures following this breach.