On 2026-05-11, an attacker chained a pull_request_target Pwn Request, GitHub Actions cache poisoning across the fork↔base trust boundary, and OIDC token extraction from runner memory to publish 84 malicious versions across 42 @tanstack/* packages on npm. Full postmortem.
The Verdict
ClassificationLikely AI
ConfidenceHigh confidence
Analyzedtext, image
ImageAI Generated
Community Verdict
Sign in to vote
Be the first to vote on this assessment.
Embed Badge
Add this badge to your site to show the AI classification for this content.
[](https://real.press/content/8464f8b1-56fd-4a6b-8298-839603d04734)