OpenAI flags third‑party tool issue (Axios)

OpenAI said on April 10 that a third-party developer tool called Axios was caught up in a broader software incident, and the company said it found no evidence that user data was accessed. The part it is protecting now is the system that tells a Mac your ChatGPT or Codex app is a real OpenAI app and not a fake. (openai.com) That system is called app signing, but the simple version is a wax seal on a letter. When the seal checks out, macOS lets the app open without warning you that the software might be tampered with. (openai.com) OpenAI said one of its internal tools downloaded a compromised update from the Axios library, which Axios described as a legitimate open-source software package that had recently been infected. That makes this a supply-chain problem, where the weak point is a tool used to build or certify software rather than the software company’s main servers. (axios.com) OpenAI said it saw no evidence that its systems were compromised, that its intellectual property was taken, or that its software was altered. Reuters reported the same point and said the company framed the event as an issue involving a developer dependency rather than a breach of core systems. (openai.com, reuters.com) The practical risk was narrower but still serious: if the app-certification chain is in doubt, a company has to assume attackers could try to make malicious software look official. OpenAI said it is taking steps to protect the certification process for its macOS applications for exactly that reason. (openai.com) That is why OpenAI told Mac users to update several apps, including ChatGPT and Codex. Independent reports said the company was also revoking affected certificates, which is the digital equivalent of canceling an old employee badge and issuing a new one. (ithinkdiff.com, msn.com) The story is bigger than one library named Axios. Modern software is built from layers of outside code, build tools, plug-ins, and cloud services, so a company can lock its front door and still get hit through a contractor carrying the wrong box. (openai.com, openai.com) OpenAI has spent the past year publicly building out its security posture, including a bug bounty program announced on March 25 and a trust portal that lists certifications such as International Organization for Standardization 27001 and Service Organization Control 2 materials for customers. This incident shows why those programs now have to cover not just models and chat logs, but also the tooling chain that ships the apps people install. (openai.com, trust.openai.com)