TanStack ransom incident limited to GitHub environment

Grafana Labs completed an internal investigation of the TanStack supply chain ransom incident, confirming no unauthorized access to customer production systems. Mandiant independently audited the systems and found no evidence of code tampering. A missed credential allowed a bad actor to clone the repository collection and demand a ransom.