OpenAI macOS certificate issue

OpenAI is telling every macOS user to update its desktop apps after a software supply-chain incident touched the certificates that prove an app is really from OpenAI. (openai.com) A code-signing certificate is a digital ID card for software: on a Mac, it helps Apple and users verify that an app came from the named developer and was not swapped for an impostor. OpenAI said the issue involved Axios, a widely used developer library, and the company is now revoking and rotating the certificate used for ChatGPT Desktop, Codex App, Codex Command Line Interface, and Atlas. (openai.com) OpenAI said the problem began on March 31, 2026, when a GitHub Actions workflow in its macOS app-signing process downloaded and ran a malicious Axios version, 1.14.1. That workflow had access to the certificate and notarization material used to sign the company’s Mac applications. (openai.com) The risk was not that users’ chats were exposed, but that a stolen certificate could help a fake app appear legitimate on a Mac. OpenAI said its analysis found the certificate was likely not exfiltrated, but it is treating it as compromised anyway. (axios.com, openai.com) OpenAI said it found no evidence that user data was accessed, that its systems or intellectual property were compromised, or that its published software was altered. The company also said passwords and OpenAI application programming interface keys were not affected. (openai.com, cnbc.com) The company’s fix is blunt: install new builds signed with a new certificate. OpenAI said the earliest safe versions are ChatGPT Desktop 1.2026.051, Codex App 26.406.40811, Codex Command Line Interface 0.119.0, and Atlas 1.2026.84.2. (openai.com) OpenAI said older macOS desktop app versions will stop receiving updates or support on May 8, 2026, and may stop functioning after that date. Users can update through the in-app updater or the official OpenAI download pages. (openai.com) The company said it also hired a digital forensics and incident response firm, reviewed notarization activity tied to the old certificate, and worked with Apple to block newly notarized software signed with the previous key. The point of those steps is to make sure no newly distributed Mac app can borrow trust from the old OpenAI identity. (openai.com) OpenAI described the incident as part of a broader attack on the software supply chain, the web of outside code and automated tools companies use to build apps. CNBC reported OpenAI said the broader campaign was believed to involve actors linked to North Korea. (cnbc.com) For Mac users, the practical check is simple: if an OpenAI desktop app has not been updated since April 10, 2026, it should be updated now. OpenAI says the certificate rotation is meant to close off even an unlikely path for fake software to pose as the real thing. (openai.com, reuters.com)