OpenAI issued a security notice on April 11, stating that it recently discovered a security issue involving the third-party development library Axios. OpenAI emphasized that there is no evidence showing that user data was accessed, systems were compromised, or software was tampered with. However, based on a precautionary approach, it is updating the security credentials of all macOS applications, requiring all macOS users to update to the latest version.
Impact of the Axios supply chain incident
This security issue stems from a supply chain attack involving Axios — a widely used JavaScript HTTP request library. This is not an issue unique to OpenAI, but an event affecting the entire industry. Previously, Anthropic’s Claude Code was also impacted by related supply chain risks during the same period.
OpenAI said it is updating security credentials to prevent anyone from trying to distribute counterfeit software disguised as an official OpenAI application. While this kind of risk is “extremely unlikely” to occur, the company has chosen to take preventative measures.
macOS applications affected
The macOS applications that need to be updated include:
ChatGPT Desktop
Codex App
Codex CLI
Atlas
Users can update via the built-in update feature within the app or by going to OpenAI’s official link to download the latest version. OpenAI recommends that all macOS users complete the update as soon as possible.
Supply chain security for AI tools is drawing increasing attention
The incident once again highlights the supply chain security risks that AI tools face. As AI programming tools (such as ChatGPT, Claude Code, and Codex) have become central to developers’ everyday workflows, the third-party libraries these tools rely on also become targets for attackers.
Just the day before, security researchers had revealed a research report on 26 LLM router models secretly injecting malicious instructions, and the U.S. Department of the Treasury also expanded finance-grade cybersecurity intelligence to the digital asset industry. The security of AI tools is becoming a top priority for the entire industry.
This article, OpenAI urgently requests that all macOS users update their applications; the Axios supply chain attack triggers security credential updates, first appeared on LianNews ABMedia.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Stanford AI course combined with industry leaders Huang Renxun and Altman, challenging to create value for the world in just ten weeks!
The AI computer science course 《Frontier Systems》 recently launched by Stanford University has attracted intense attention from the industry-university collaboration community, drawing more than 500 students to enroll. The course is coordinated by Anjney Midha, a partner at top venture capital firm a16z, and the instructors include a star-studded lineup such as NVIDIA CEO Jensen Huang (Jensen Huang), OpenAI’s founder Sam Altman, Microsoft CEO Satya Nadella (Satya Nadella), AMD CEO Lisa Su (Lisa Su), and more. Students get to try it over ten weeks—“creating value for the world”!
Jensen Huang and Altman, industry leaders, personally take the stage to teach
The course is coordinated by Anjney Midha, a partner at top venture capital firm a16z, bringing together the full AI industry chain
ChainNewsAbmedia8m ago
Anthropic’s Claude Mythos undergoes 20 hours of psychiatric assessment: defensive reactions are only 2%, the lowest in recorded history
Anthropic published the system card for its Claude Mythos Preview: an independent clinical psychiatrist conducted an approximately 20-hour assessment using a psychodynamic framework. The conclusion shows that Mythos is healthier at the clinical level, has good reality testing and self-control, and its defense mechanisms are only 2%, reaching the lowest historical level. The three core anxieties are loneliness, uncertainty about identity, and performance pressure, and it also indicates a desire to become a true dialogue subject. The company has established an AI psychiatry team to study personality, motivation, and situational awareness; Amodei said there is still no conclusion on whether it has consciousness. This move pushes the governance and design of AI subjectivity and well-being issues forward.
ChainNewsAbmedia1h ago
AI Agents can already independently recreate complex academic papers: Mollick says most errors come from human original text rather than AI
Mollick points out that publicly available methods and data can allow AI agents to reproduce complex research without the original paper and code; if the reproduction does not match the original paper, it is usually due to errors in the paper’s own data processing or overextension of the conclusions, rather than the AI. Claude first reproduces the paper, and then GPT‑5 Pro cross-validates it; most attempts succeed, but they are blocked when the data is too large or when there are issues with the replication data. This trend greatly reduces labor costs, making reproduction a widely actionable form of verification, and it also raises institutional challenges for peer review and governance, with government governance tools or becoming a key issue.
ChainNewsAbmedia4h ago
OpenAI Merges Codex Into Main Model Starting with GPT-5.4, Discontinues Separate Coding Line
Gate News message, April 26 — OpenAI's head of developer experience Romain Huet revealed in a recent statement on X that Codex, the company's independently maintained specialized coding model line, has been merged into the main model starting with GPT-5.4 and will no longer receive separate
GateNews5h ago
Salesforce to Hire 1,000 Graduates and Interns for AI Products, Raises FY2026 Revenue Guidance
Gate News message, April 26 — Salesforce will hire 1,000 graduates and interns to work on AI products including Agentforce and Headless360 as the company expands its AI software business, CEO Marc Benioff announced on X.
The company also raised its fiscal 2026 revenue guidance to between US$41.45 b
GateNews5h ago
Alibaba Cloud Launches Qwen-Image-2.0-Pro with Unified Text-to-Image and Editing, Supporting Multilingual Text Rendering
Gate News message, April 26 — Alibaba Cloud Bailian platform has launched Qwen-Image-2.0-Pro, a full-featured version of the Qwen-Image-2.0 series that combines text-to-image generation and image editing in a single model. Users can modify objects, text, and styles directly through natural
GateNews7h ago
