Vibe Coding
Pattern: Supply Chain Attacks Now Carry Valid SLSA Provenance — Cryptographic Verification Alone Is Insufficient
The TanStack attack is the first documented case of malicious npm packages carrying valid SLSA provenance certificates, because the attacker hijacked the legitimate build pipeline itself — which Sigstore verified correctly. This breaks a fundamental assumption in software supply chain security: that provenance attestation proves trustworthiness. Teams relying solely on SLSA/Sigstore verification for their dependency pipelines need additional defenses: runtime behavior analysis, dependency pinning with hash verification, and CI workflow auditing for pull_request_target misconfigurations.
Source
↳ Follow the thread