OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident
This image was generated by AI and may not depict real events.
OpenAI has revoked its macOS app certificate after a malicious Axios library was downloaded through a GitHub Actions workflow. The company found no evidence of user data compromise but is taking precautions to protect its users, including revoking and rotating the certificate.
OpenAI's macOS app-signing process was affected by a malicious Axios library. The library was downloaded through a GitHub Actions workflow on March 31. No user data was compromised, but the company is revoking its certificate as a precaution. Older versions of its macOS desktop apps will no longer receive updates or support starting May 8, 2026. The company is working with Apple to ensure software signed with the previous certificate cannot be newly notarized. Users are advised to update to the latest version to avoid disruptions.
This content was automatically generated and/or translated by AI. It may contain inaccuracies. Please refer to the original sources for verification.