Home / Security updates / TanStack NPM Compromise
TanStack NPM Compromise
Security updates detail rendered from /security-updates/upd_ecf390a0e1c56f0a.
Overview
| ID | upd_ecf390a0e1c56f0a |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | UiPath |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_ecf390a0e1c56f0a |
| providerId | safebase |
| organizationId | org_33d000fdc8a62017 |
| trustCenterId | tc_7d7ee18589030c52 |
| title | TanStack NPM Compromise |
| message | UiPath security engineering and independently [Wiz Security](https://www.wiz.io/blog/mini-shai-hulud-strikes-again-tanstack-more-npm-packages-compromised) have confirmed that all of the compromised UiPath NPM packages have a bug rendering the malware non-functional. All UiPath customers should be aware that these NPM packages if downloaded pose no risk of malware. Update - Malicious versions of NPM packages were available on registry.npmjs.org for approximately 1 hour before deprecation and ~6 hours before unpublish completed. No production systems, identity infrastructure, or customer data were accessed by the attacker based on information currently available to UiPath. We have provided a list of all affected packages that could have potentially been downloaded and executed by customers. We have released a Full Public Postmortem of this event which can be found [here](https://trust.uipath.com/?itemUid=3a065be1-4ce7-4606-86a1-1942997b9feb&source=click) UiPath is aware of the NP |
| url | - |
| publishedAt | 2026-05-11 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "incidents"
} |
| company | {
"id": "org_33d000fdc8a62017",
"name": "UiPath",
"domains": [
"trust.uipath.com",
"uipath.com"
]
} |
| trust_center | {
"id": "tc_7d7ee18589030c52",
"name": "UiPath",
"url": "https://trust.uipath.com",
"host": "trust.uipath.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_ecf390a0e1c56f0a",
"company": "/v1/companies/org_33d000fdc8a62017",
"trust_center": "/v1/trust-centers/tc_7d7ee18589030c52",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_ecf390a0e1c56f0aJSON