OpenAI Requires macOS Users to Update Apps
OpenAI identified a supply chain compromise tied to the Axios developer library that touched a GitHub Actions workflow used to sign macOS applications. OpenAI says the malicious payload executed on March 31 likely did not exfiltrate the signing certificate, and there is no evidence of user data, API keys, or system compromise. As a precaution, OpenAI is invalidating the old signing certificate, issuing new certificates, and requiring all macOS users to update their OpenAI apps. Affected software includes ChatGPT Desktop, Codex, Codex-cli, and Atlas; older app versions will stop receiving updates and may become nonfunctional after May 8, 2026. Users should update from inside the app or official links; passwords and API keys do not need changing.
What happened
OpenAI identified a software supply chain compromise that involved the Axios developer library and a GitHub Actions workflow used to build and notarize its macOS applications. The malicious Axios package was executed on March 31, and that workflow had access to a signing and notarization certificate used for macOS apps. OpenAI's investigation concluded the certificate was likely not exfiltrated, and there is no evidence user data, API keys, or its intellectual property were accessed. OpenAI is rotating certificates and requiring macOS users to update immediately.
Technical details
OpenAI says the root cause was a misconfiguration in a GitHub Actions workflow that downloaded a compromised Axios artifact. The workflow executed code with access to signing materials used to build and notarize macOS binaries. As a defensive step OpenAI is disabling the old certificate and issuing new signing credentials. Effective May 8, 2026, older macOS app versions will not receive updates and may cease functioning. Affected apps include:
- •ChatGPT Desktop
- •Codex
- •Codex-cli
- •Atlas
No impact has been reported for Android, Linux, or Windows clients. OpenAI states passwords and OpenAI API keys remain secure.
Context and significance
This is a classic software supply chain incident, not a direct compromise of OpenAI backend services. For practitioners this underscores two persistent risks: developer dependencies can be trojanized, and CI/CD credentials, if accessible to workflows, increase blast radius. The incident follows a pattern of attacks that target package managers and build pipelines and includes attribution in reporting that links the broader campaign to actors believed to be associated with state-backed groups. The practical consequence is elevated scrutiny on CI permissions, dependency verification, and ephemeral credential use in build systems.
What to watch
Confirm you are running the latest macOS builds of OpenAI apps before May 8, 2026, and audit any GitHub Actions workflows that use third-party packages or have access to signing credentials. Expect follow-ups from OpenAI with further forensic detail and recommended CI hardening steps.
Key Points
- 1Supply chain compromise of Axios executed inside a GitHub Actions workflow increased risk to macOS app signing artifacts.
- 2OpenAI rotated signing certificates and requires macOS app updates; older versions may stop functioning after May 8, 2026.
- 3No evidence of user data or API key exfiltration, but CI misconfiguration highlights systemic risk for build pipelines and dependency hygiene.
Scoring Rationale
This is a notable supply chain security incident that affects a widely used AI vendor and highlights CI/CD and dependency risks. It did not result in confirmed data exfiltration, so it is important but not industry-shaking.
Sources
Public references used for this report.
View 8 more sources
- 04OpenAI identifies security issue involving third-party tool, says user ...ciso.economictimes.indiatimes.com
- 05OpenAI security alert: Third-party vulnerability detected, user data ...tribuneindia.com
- 06OpenAI reports security issue in third-party tool Axios, assures user ...thenews.com.pk
- 07OpenAI identifies security issue involving third-party tool, says user ...m.economictimes.com
- 08OpenAI warns of potential security issue, urges Mac users to update ...digit.in
- 09OPENAI: SECURITY CERTIFICATION UPDATES REQUIRE ALL ...intellectia.ai
- 10OpenAI is asking Mac users to update ChatGPT and Codex immediately, here is whyindiatoday.in
- 11OpenAI Warns macOS Users to Update ChatGPT and Codex Immediatelyitsecuritynews.info
Practice interview problems based on real data
1,625 SQL & Python problems across 15 industry datasets — the exact type of data you work with.
Try 250 free problems
