Cloud-Native Digest is your monthly overview of all things open-source, supply chain security, and more ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­    ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏  ͏ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­  
View in browser
DIGEST_Newsletter-Banner_10

Edition: May 2026

Brought to you by Nigel Douglas, Head of Developer Relations at Cloudsmith

 

May 2026 could go down as the month software supply chain security stopped being a niche concern and became the story. I'll walk you through everything that happened – from GlassWorm-linked OpenVSX extensions to a compromised Bitwarden CLI, and the relentless wave of Mini Shai-Hulud attacks reshaping how we think about open source trust.

Read the full May digest on cloudsmith.com

MAY 2026 

 

Three stories you can't afford to miss

We tracked dozens of supply chain incidents in May. Here are the three we think are most noteworthy.

1. The TanStack attack reached two OpenAI employee devices
The TeamPCP-orchestrated compromise of TanStack's npm packages didn't stop at open source. In May, it ended up exfiltrating internal source code credentials from two OpenAI employee devices – and forced a rotation of code-signing certificates that pushed every macOS ChatGPT Desktop user to update their app. No production systems were breached, but the message is clear: a single poisoned dependency now reaches all the way into the most well-resourced AI labs in the world.

Read what happened and how OpenAI responded →

 

2. Megalodon: 5,718 malicious commits to 5,561 repos in six hours
An automated attack codenamed megalodon used throwaway accounts and forged CI identities to backdoor more than five thousand GitHub repositories in a single afternoon. The payloads scraped AWS, GCP, and Azure credentials, SSH keys, and source secrets straight off CI/CD runners – and high-profile targets like Wiznet and Tiledesk unknowingly propagated the backdoor downstream into npm. If your CI workflows trust pushes and PRs by default, this one is required reading.

See how the megalodon campaign worked →

 

3. TeamPCP just open-sourced the Shai-Hulud worm – with a $1,000 bounty
In one of the more brazen developments we've ever covered, the group behind the TanStack compromise teamed up with Breached forum to run a supply chain attack competition. The Shai-Hulud worm is now open-sourced and hosted on the forum's CDN, with $1,000 in Monero going to participants who can prove they've used it to breach a target. Expect copycat campaigns. Lots of them.

Read the full breakdown →

Want every incident, advisory and news item?

The full May digest covers all 19 supply chain incidents we tracked this month – Polymarket, Checkmarx, GitHub, Nx Console, durabletask, node-ipc, intercom-php, and more – plus our news roundup featuring etcd 3.7.0-beta.0, npm trusted publishing, CISA's new KEV nomination form, and 10 years of SPIFFE.

Read the full May Cloud-Native Digest on cloudsmith.com →

📚 Bonus reading: If you've been seeing MAL-IDs popping up alongside CVEs and want to actually track malicious packages, check out my recent OpenSSF post: Detecting Malicious Packages Using the OSV API.


🎟️ See us at PlatformCon 2026 – I'm running a series of virtual workshops on AI security, malicious packages, and policy-as-code during PlatformCon - Monday, June 22. Reserve your free spot →

 

Signed, sealed and delivered – see you next issue.

Nigel Douglas

Nigel Douglas

Head of Developer Relations

Cloudsmith

Cloudsmith, 7 Donegall Square West, Belfast, Northern Ireland BT1 6JH

Unsubscribe Manage preferences

LinkedIn
X
Instagram
Website