🚨 Active Supply Chain Attack:node-ipc Package Compromised.Learn More
Socket
Book a DemoSign in
Socket
Book a DemoSign in

@tanstack/react-router-devtools

Package Overview
Dependencies
Maintainers
6
Versions
435
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install
This package has malicious versions linked to the ongoing "Mini Shai-Hulud" supply chain attack.

Affected versions:

1.166.161.166.19
View campaign page

@tanstack/react-router-devtools

Modern and scalable routing for React applications

Source
npmnpm
Version
1.166.9
Version published
Weekly downloads
1.8M
-14.4%
Maintainers
6
Weekly downloads
 
Created
Source

TanStack React Router Devtools

See https://tanstack.com/router/latest/docs/framework/react/devtools

Keywords

react
location
router
routing
async
async router

FAQs

Package last updated on 15 Mar 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

Popular Go Decimal Library Targeted by Long-Running Typosquat with DNS Backdoor

Research

/

Security News

Popular Go Decimal Library Targeted by Long-Running Typosquat with DNS Backdoor

A long-running Go typosquat impersonated the popular shopspring/decimal library and used DNS TXT records to execute commands.

By Kush Pandya  -  May 19, 2026