Storyline

GitHub and Grafana Labs breaches linked to TanStack supply chain attack via malicious VS Code extension

Recent breaches at GitHub and Grafana Labs have been traced back to a supply chain compromise involving the TanStack npm package.

Published 2026-05-20 04:01 UTCUpdated 2026-05-21 14:45 UTC

Current brief openSource links open

This current storyline is open here with summary, metadata, source links, continuity context, and full evidence. Paid is for compare-over-time, alerts, exports, and workflow.

Back Evidence (4)Get the free brief by email Start free trial

No card needed for the free brief.

Evidence trail (top sources)

top sources (3 domains)

3 top sources shown

GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension

Infosecurity Magazine · News · infosecurity-magazine.com · 2026-05-21 14:45 UTC

GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise

Help Net Security · News · helpnetsecurity.com · 2026-05-21 13:42 UTC

GitHub links repo breach to TanStack npm supply-chain attack

BleepingComputer · News · bleepingcomputer.com · 2026-05-21 06:54 UTC

View all evidence

Overview

Recent breaches at GitHub and Grafana Labs have been traced back to a supply chain compromise involving the TanStack npm package.

Score total

1.37

Momentum 24h

Posts

Origins

Source types

Duplicate ratio

Why now

The breaches were recently disclosed, revealing active exploitation of popular developer tools.
The attack affects widely used software components impacting many organizations.
Understanding this incident helps improve defenses against similar supply chain compromises.

Why it matters

Highlights risks of supply chain attacks via developer tools and extensions.
Demonstrates how compromised credentials can lead to large-scale code repository breaches.
Shows the importance of securing CI/CD pipelines and verifying software dependencies.

Continuity snapshot

Trend status: flat.
Continuity stage: broad_confirmed.
Current status: open.
4 current source-linked posts are attached to this storyline.

All evidence

GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension

Infosecurity Magazine · infosecurity-magazine.com · 2026-05-21 14:45 UTC

GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise

Help Net Security · helpnetsecurity.com · 2026-05-21 13:42 UTC

GitHub links repo breach to TanStack npm supply-chain attack

BleepingComputer · bleepingcomputer.com · 2026-05-21 06:54 UTC

Show filters & breakdown

Posts loaded: 0Publishers: 3Origin domains: 3Duplicates: -

Platform

Publisher

Origin domain

Relevance tier

Duplicates only

Showing 3 / 0

Top publishers (this list)

Infosecurity Magazine (1)
Help Net Security (1)
BleepingComputer (1)

Top origin domains (this list)

infosecurity-magazine.com (1)
helpnetsecurity.com (1)
bleepingcomputer.com (1)