developmentstoday

Ask DT AI Audio Brief Videos Podcast +

Ask DT AI Audio Brief Videos Podcast

HomeTagssoftware supply chain

#software supply chain

All articles tagged with "software supply chain"

Company

About Us
Advertise
Contact
Editorial Policy

Legal

Terms of Service
Privacy Policy
Cookie Policy
AI & Ethics Policy
Do Not Sell My Info
FAQ
Site Map

Discover

Newsletter
Ask DT AI
Audio Brief
Videos
Podcast
DT Premium

Connect

Twitter / X
Facebook
LinkedIn
YouTube
Instagram
TikTok
Flipboard
RSS Feed

© 2026 Developments Today. All rights reserved.

software supply chain Articles | Developments Today

A photograph of a red fedora

Backdoored Red Hat NPM packages show how fast supply-chain attacks spread

Attackers compromised an official Red Hat NPM namespace.
Affected packages executed malicious code during installation.
The malware stole credentials and could republish infected packages through other accounts.

DE

DT Editorial Team·Jun 2, 2026·via arstechnica.com

More in News→

Our response to the TanStack npm supply chain attack

OpenAI details limited fallout from TanStack supply-chain attack and orders macOS app updates

OpenAI says two employee devices were impacted by the TanStack npm compromise.
The company reported limited credential exfiltration from a small set of internal repositories.
OpenAI said it found no evidence of customer-data exposure, production compromise, or altered software.
All macOS users of OpenAI apps are being told to update by June 12, 2026 because of certificate changes.

DE

DT Editorial Team·May 14, 2026·via openai.com

More in AI & Robotics→

Malware Disguised as an OpenAI Release Reached Hugging Face Users

A malicious Hugging Face repository reportedly posed as an OpenAI release.
The supplied excerpt says it delivered infostealer malware to Windows machines.
The same excerpt says the repository logged about 244,000 downloads before removal.

DE

DT Editorial Team·May 12, 2026·via artificialintelligence-news.com

More in AI & Robotics→

Abstract blurred gradient of blue and yellow hues sweeping diagonally across the frame, creating a soft, glowing transition.

OpenAI Rotates macOS Signing Certificates After Axios Supply-Chain Incident

OpenAI said a malicious Axios version ran in a GitHub Actions workflow used in macOS app signing.
The company found no evidence that user data, internal systems, intellectual property, or shipped software were compromised.
OpenAI is rotating certificates and requiring updates for ChatGPT Desktop, Codex App, Codex CLI, and Atlas before May 8, 2026.

DE

DT Editorial Team·Apr 12, 2026·via openai.com

More in AI & Robotics→