CI/CD news and developer summaries

On May 11, 2026, TanStack suffered a supply chain attack where 84 malicious package versions were published. Attackers chained GitHub Actions cache poisoning, pull_request_target misuse, and OIDC token theft to bypass CI/CD security. No npm credentials were stolen, but local installations may be compromised. All affected versions were deprecated, and security hardening is underway.

A coordinated supply chain attack compromised over 170 npm packages and 2 PyPI packages, totaling 404 malicious versions. Notable targets included TanStack, Mistral AI, UiPath, and OpenSearch. The malware exfiltrates cloud and CI/CD credentials via the Session protocol and uses IDE-poisoning techniques to ensure self-propagation through malicious commits, marking a major escalation in cross-ecosystem registry poisoning.

Obsidian has launched a new Community portal and developer dashboard to streamline plugin and theme management. The initiative introduces automated security and code quality reviews, real-time status tracking, and project scorecards. These updates aim to improve ecosystem safety and scalability while enabling faster submission processes and enhanced discovery tools for the platform's 120 million-plus downloads.

A developer blamed a Cursor/Claude agent for deleting their production database, highlighting a lack of accountability. The author argues that human error and poor architecture—specifically exposing dangerous API endpoints—are the root causes. True security requires robust automated processes and human oversight rather than blindly relying on AI to perform critical tasks.

GitHub is resolving degraded availability for Actions Jobs on Hosted Runners in the East US region. While Standard Hosted Runners are showing signs of recovery following mitigation efforts, users with Private Networking remain impacted as Azure works to restore capacity. Users are advised to fail over to alternative regions to mitigate ongoing queue delays and job failures.

Cloudflare developed a CI-native AI orchestration system using OpenCode to automate code reviews. Instead of a monolithic model, they employ specialized sub-reviewers for domains like security and performance, managed by a coordinator agent. This plugin-based architecture reduces review bottlenecks, improves code quality, and ensures high accuracy by utilizing risk-based tiers and prompt engineering to minimize noise.

The threat group TeamPCP, also known as UNC6780, claims to have breached GitHub’s internal systems, compromising approximately 4,000 private repositories. GitHub has confirmed an investigation but reports no evidence that customer data was affected. TeamPCP is a sophisticated, financially motivated actor known for major supply chain attacks targeting critical development and security tools.