On May 11, 2026, a self-replicating worm called Mini Shai-Hulud quietly slipped into 42 widely used TanStack open-source ...

Bumblebee from Perplexity scans developer machines for compromised packages and AI tool configs, without triggering malware.

OpenAI said it found no evidence that user data was accessed after a supply-chain attack involving the TanStack npm library. The incident has renewed concerns about the security of open-source ...

Over 170 packages across multiple high-profile NPM and PyPI projects were compromised in a new, coordinated Mini Shai-Hulud software supply chain attack. The campaign hit 42 TanStack packages, 65 ...

On April 29, 2026, someone slipped malicious code into four widely used SAP software packages. Within days, the infection had spread to at least 169 packages across the npm registry, the world’s ...

UiPath delivers automation software and AI-driven solutions to streamline enterprise workflows across major global industries.

Q1 FY2027 earnings call recap: raised guidance, ARR/revenue beats, GAAP profit, AI agents & orchestration momentum, buybacks—read now.

UiPath swung to a profit in the fiscal first quarter amid growing demand for its automation tools. The software platform on Thursday posted a profit of $22.5 million, or 4 cents a share, compared with ...

Late last year, software automation firm UiPath, Inc. (PATH) traded as close as around $20. In January, sellers emerged, continuing to dump the stock in February. In March, when the company posted ...

Morningstar Quantitative Ratings for Stocks are generated using an algorithm that compares companies that are not under analyst coverage to peer companies that do receive analyst-driven ratings.

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious versions anyway. The CI/CD Trust-Chain Audit Grid maps the six gaps it ...