OpenAI issued a security notice on April 11, stating that it recently discovered a security issue involving the third-party development library Axios. OpenAI emphasized that there is no evidence showing that user data was accessed, systems were compromised, or software was tampered with. However, based on a precautionary approach, it is updating the security credentials of all macOS applications, requiring all macOS users to update to the latest version.
Impact of the Axios supply chain incident
This security issue stems from a supply chain attack involving Axios — a widely used JavaScript HTTP request library. This is not an issue unique to OpenAI, but an event affecting the entire industry. Previously, Anthropic’s Claude Code was also impacted by related supply chain risks during the same period.
OpenAI said it is updating security credentials to prevent anyone from trying to distribute counterfeit software disguised as an official OpenAI application. While this kind of risk is “extremely unlikely” to occur, the company has chosen to take preventative measures.
macOS applications affected
The macOS applications that need to be updated include:
ChatGPT Desktop
Codex App
Codex CLI
Atlas
Users can update via the built-in update feature within the app or by going to OpenAI’s official link to download the latest version. OpenAI recommends that all macOS users complete the update as soon as possible.
Supply chain security for AI tools is drawing increasing attention
The incident once again highlights the supply chain security risks that AI tools face. As AI programming tools (such as ChatGPT, Claude Code, and Codex) have become central to developers’ everyday workflows, the third-party libraries these tools rely on also become targets for attackers.
Just the day before, security researchers had revealed a research report on 26 LLM router models secretly injecting malicious instructions, and the U.S. Department of the Treasury also expanded finance-grade cybersecurity intelligence to the digital asset industry. The security of AI tools is becoming a top priority for the entire industry.
This article, OpenAI urgently requests that all macOS users update their applications; the Axios supply chain attack triggers security credential updates, first appeared on LianNews ABMedia.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Investors Question OpenAI’s $852 billion Valuation, Saying a Strategic Shift May Face Competitive Threats
Gate News message. On April 14, the Financial Times reported that OpenAI investors questioned its $852 billion valuation, saying the company’s strategy is shifting. Some investors said these strategic changes may make OpenAI more vulnerable to threats from competitors such as Anthropic and Google.
GateNews5m ago
Boss, you don’t need to go into the office anymore! Meta is building Mark Zuckerberg’s digital twin—if you have anything to ask, just ask the AI.
Meta is developing an AI clone based on its CEO, Mark Zuckerberg, to strengthen connections between employees and management. This digital avatar will use Zuckerberg’s image, voice, and strategic thinking, with the goal of enabling interaction for about 80k employees. This initiative is different from the “CEO agent,” which is a decision-support tool. Meta’s long-term goal is to develop “superintelligent” AI and to try applying this technology to influencers and creators around the world.
ChainNewsAbmedia36m ago
Ministry of Education and four other departments: will include artificial intelligence in teacher qualification examinations and certification content
The Ministry of Education and four other departments issued the “Artificial Intelligence + Education” Action Plan, aiming to enhance teachers’ AI literacy and skills, develop related standards and provide tiered training, advance reforms in the training of normal (teacher) students, incorporate artificial intelligence into teacher qualification examinations and the curriculum system, and promote educational innovation.
GateNews1h ago
OpenAI founder Altman was attacked; a suspect has been charged with attempted murder, and testimony says that humanity will be wiped out by AI
The San Francisco District Attorney’s Office announced that the suspect in the attack on OpenAI founder Sam Altman, Daniel Moreno-Gama, has been charged with attempted murder and other federal offenses. He was arrested after the attack; documents found in his possession detailed his intentions, stating that he would be “on the verge of extinction” because of artificial intelligence.
GateNews1h ago
Does Claude Mythos Pose a Threat to Financial Security? U.S. Treasury Secretary and Federal Reserve Chair Hold an Emergency Meeting to Warn of Risks
The U.S. Treasury Secretary and the Chair of the Federal Reserve convened top executives on Wall Street, warning that the AI model Mythos could pose systemic risk to the financial system. Mythos can autonomously discover a large number of vulnerabilities; Anthropic chose to limit its public release and launched the “Glass Wings Program” to strengthen cybersecurity.
CryptoCity1h ago
Compute power is scarce enough to make you cry! WSJ: Blackwell’s rental prices jumped 48% in two months, and Anthropic is too slow—companies are jumping ship.
The latest survey shows that the AI industry is facing a computing power supply crisis, with Blackwell GPU rental prices up 48% within two months. Anthropic’s Claude API has a normal operating success rate below corporate standards, causing customers like Retool to switch to OpenAI. As demand for computing power surges, data centers are facing a power bottleneck, and the ongoing shortage situation will continue to affect the market.
動區BlockTempo1h ago
