San Francisco — TanStack and AI-vendor packages hit by supply-chain campaign. TanStack is embedded in millions of React applications; npm and PyPI packages tied to multiple AI companies were also comp
The Record