OpenAI issued a security notice on April 11, stating that it recently discovered a security issue involving the third-party development library Axios. OpenAI emphasized that there is no evidence showing that user data was accessed, systems were compromised, or software was tampered with. However, based on a precautionary approach, it is updating the security credentials of all macOS applications, requiring all macOS users to update to the latest version.
Impact of the Axios supply chain incident
This security issue stems from a supply chain attack involving Axios — a widely used JavaScript HTTP request library. This is not an issue unique to OpenAI, but an event affecting the entire industry. Previously, Anthropic’s Claude Code was also impacted by related supply chain risks during the same period.
OpenAI said it is updating security credentials to prevent anyone from trying to distribute counterfeit software disguised as an official OpenAI application. While this kind of risk is “extremely unlikely” to occur, the company has chosen to take preventative measures.
macOS applications affected
The macOS applications that need to be updated include:
ChatGPT Desktop
Codex App
Codex CLI
Atlas
Users can update via the built-in update feature within the app or by going to OpenAI’s official link to download the latest version. OpenAI recommends that all macOS users complete the update as soon as possible.
Supply chain security for AI tools is drawing increasing attention
The incident once again highlights the supply chain security risks that AI tools face. As AI programming tools (such as ChatGPT, Claude Code, and Codex) have become central to developers’ everyday workflows, the third-party libraries these tools rely on also become targets for attackers.
Just the day before, security researchers had revealed a research report on 26 LLM router models secretly injecting malicious instructions, and the U.S. Department of the Treasury also expanded finance-grade cybersecurity intelligence to the digital asset industry. The security of AI tools is becoming a top priority for the entire industry.
This article, OpenAI urgently requests that all macOS users update their applications; the Axios supply chain attack triggers security credential updates, first appeared on LianNews ABMedia.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Hong Kong to Announce Sixth Batch of Key Enterprise List Tomorrow
Hong Kong's Financial Secretary Paul Chan announced the unveiling of a new list of key enterprises, attracting over 100 businesses valued above 100 billion HKD in sectors like life sciences, AI, and fintech, highlighting Hong Kong's appeal for international investment.
GateNews1h ago
Honor's Lightning Robot Wins Beijing 2026 Humanoid Robot Half Marathon with 50:26 Finish
Honor's "Lightning" humanoid robot set a new record at the 2026 Beijing Yizhuang Humanoid Robot Half Marathon, completing the race in 50 minutes and 26 seconds, exceeding the human world record.
GateNews4h ago
Meta Stock Rises 1.73% as Company Plans 8,000-Job Layoff Starting May 20
Meta Platforms plans to cut about 8,000 jobs, or 10% of its workforce, starting May 20, despite rising stock prices. The company, with over $200 billion in revenue, is focusing on AI investments amid significant restructuring, aligning with industry trends of layoffs.
GateNews11h ago
Google’s annual report says Gemini achieves millisecond interception, blocking 99% of scam ads
The article discusses how Google strengthens ad safety through its generative AI system, Gemini. The report shows that the speed at which it blocks noncompliant ads has been reduced to milliseconds, with a blocking rate of 99%. Last year, Google removed 8.3 billion ad listings and suspended 24.9 million accounts, indicating a significant rise in the number of scam ads. Experts point out that this is a contest between AI and AI, and that in the future there will still be challenges in dealing with both legal and illegal activities brought about by AI.
ChainNewsAbmedia13h ago
Ethereum Co-founder Lubin: AI Will Be Critical Turning Point for Crypto, But Tech Giant Monopoly Poses Systemic Risk
Ethereum co-founder Joseph Lubin emphasized the transformative potential of AI for the cryptocurrency sector while cautioning against the risks of centralization among tech giants. He envisions AI-driven autonomous transactions on blockchain and highlights the convergence of traditional finance with DeFi.
GateNews15h ago
Elon Musk Pushes 'Universal High Income' Checks as Ultimate Solution for AI Unemployment
Elon Musk advocates for a Universal High Income to combat AI-induced unemployment, envisioning a future with ample goods and zero inflation. In contrast, experts like Sam Altman raise concerns about job loss and propose protective measures for workers.
Coinpedia16h ago
