A downstream OpenAI incident tied to the TanStack ecosystem shows how a software supply-chain event can spill beyond code and into developer devices, repository secrets, and the trust model behind modern releases.
A critical vulnerability lurking in the Undertow HTTP server exposes businesses to session hijacking, cache poisoning, and more-patches are urgent, but the risk is already real.