[openai-blog] Our response to the TanStack npm supply chain attack