A recent security concern has prompted OpenAI to issue an urgent advisory for macOS users, asking them to update their ChatGPT and Codex apps immediately to stay protected.
The issue stems from a broader software supply chain attack reported on March 31, involving a third-party tool called Axios. This tool is used by OpenAI to help verify that its macOS applications are legitimate. The attack targeted Axios, which is widely used by developers, raising concerns about compromised code execution.
OpenAI clarified that user data, passwords, API keys, and internal systems were not affected. However, as a precaution, the company is updating its app security certificates and urging users to install the latest versions to avoid potential risks such as fake or tampered applications.
The affected applications include ChatGPT Desktop, Codex App, Codex CLI, and Atlas. OpenAI uses GitHub Actions to build and certify these apps. During the incident, the system downloaded a compromised version of Axios, which led to the execution of affected code.
Although attackers did not gain access to OpenAI’s app certification credentials, the company has disabled its old security certificate and replaced it with a new one. As a result, older versions of these apps will stop functioning and will no longer receive updates or support after May 8, 2026.
macOS users are advised to update their apps through the built-in update feature or official sources. OpenAI has provided a 30-day window for users to complete the update process, as older certificates may cause issues with app downloads and verification.
The company also confirmed that this issue does not impact apps on Android, Linux, or Windows.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
