{"@type":"StructuredNewsArticle","access":{"license":"neupai_standard","structured_data":"free","full_text_access":null,"full_text_available":false,"attribution_required":true},"content":{"claims":[{"id":"c1","type":"fact","as_of":"2026-05","figures":null,"insight":null,"as_of_raw":"2026년 5월","statement":"오픈AI가 오픈소스 소프트웨어 공급망 공격을 받아 일부 직원 기기가 침해되고 내부 소스코드 일부가 탈취됐다","comparison":null,"expiry_hint":null,"source_type":"company_disclosure","as_of_explicit":false},{"id":"c2","type":"fact","as_of":"2026-05-11","figures":null,"insight":null,"as_of_raw":"5월 11일","statement":"공격자는 5월 11일 단 6분 만에 42개 패키지에 걸쳐 84개의 악성 버전을 npm 저장소에 심었다","comparison":null,"expiry_hint":null,"source_type":"journalist_analysis","as_of_explicit":true},{"id":"c3","type":"fact","as_of":"2026-05-11","figures":null,"insight":null,"as_of_raw":"약 20분 만에","statement":"외부 연구자가 약 20분 만에 이를 포착해 신고했다","comparison":null,"expiry_hint":null,"source_type":"journalist_analysis","as_of_explicit":false},{"id":"c4","type":"fact","as_of":"2026-05","figures":null,"insight":null,"as_of_raw":"2026년 5월","statement":"피해는 탠스택에 그치지 않고 미스트럴 AI, UI패스 등 npm·PyPI 생태계의 160개 이상 패키지로 번졌다","comparison":null,"expiry_hint":null,"source_type":"journalist_analysis","as_of_explicit":false}],"topics":["사이버보안","오픈소스","AI"],"summary":"오픈AI가 탠스택 오픈소스 라이브러리를 통한 공급망 공격으로 직원 기기 침해와 내부 소스코드 일부 탈취 피해를 입었다고 확인했다. 공격자는 5월 11일 6분 만에 42개 패키지에 84개 악성 버전을 심어 160개 이상 패키지로 피해가 확산됐다.","entities":[{"name":"오픈AI","type":"company","metadata":{"parent":null,"ticker":null},"canonical_id":"corp:us:openai","role_in_article":"primary_subject"},{"name":"탠스택","type":"product","metadata":{"parent":null,"ticker":null},"canonical_id":"product:us:tanstack","role_in_article":"primary_subject"},{"name":"미스트럴 AI","type":"company","metadata":{"parent":null,"ticker":null},"canonical_id":"corp:fr:mistral-ai","role_in_article":"mentioned"},{"name":"UI패스","type":"company","metadata":{"parent":null,"ticker":null},"canonical_id":"corp:us:uipath","role_in_article":"mentioned"},{"name":"팀PCP","type":"organization","metadata":{"parent":null,"ticker":null},"canonical_id":"org:xx:kpcp","role_in_article":"mentioned"}],"headline":"탠스택 오픈소스 공급망 공격, 오픈AI까지 피해...\"사용자 데이터는 안전\"","geography":["US"],"ai_emotional_context":{"arousal":0,"valence":0,"primary_emotions":[],"emotional_triggers":[],"secondary_emotions":[]}},"@context":"https://neupai.io/schema/v0.2","identity":{"ai_url":null,"author":"버트","language":"ko","publisher":{"name":"테크42","type":"online","domain":"tech42.co.kr"},"article_id":"tech42_20260514_tanstack-supply-chain-attack-openai","updated_at":null,"originality":"self_produced","article_type":"straight_news","published_at":"2026-05-14T23:32:58.000Z","canonical_url":"https://www.tech42.co.kr/%ed%83%a0%ec%8a%a4%ed%83%9d-%ec%98%a4%ed%94%88%ec%86%8c%ec%8a%a4-%ea%b3%b5%ea%b8%89%eb%a7%9d-%ea%b3%b5%ea%b2%a9-%ec%98%a4%ed%94%88ai%ea%b9%8c%ec%a7%80-%ed%94%bc%ed%95%b4-%ec%82%ac%ec%9a%a9/?utm_source=rss&utm_medium=rss&utm_campaign=%25ed%2583%25a0%25ec%258a%25a4%25ed%2583%259d-%25ec%2598%25a4%25ed%2594%2588%25ec%2586%258c%25ec%258a%25a4-%25ea%25b3%25b5%25ea%25b8%2589%25eb%25a7%259d-%25ea%25b3%25b5%25ea%25b2%25a9-%25ec%2598%25a4%25ed%2594%2588ai%25ea%25b9%258c%25ec%25a7%2580-%25ed%2594%25bc%25ed%2595%25b4-%25ec%2582%25ac%25ec%259d%25a9"},"temporal":{"freshness":"recent","next_update_expected":null},"provenance":{"source_chain":["primary_reporting"],"related_articles":[],"original_source_url":null}}