When researchers found an obfuscated token while examining the relationship between OpenAI Codex and GitHub, they took notice ...

ChatGPT and Codex flaws patched Feb 2026 exposed DNS exfiltration and GitHub tokens, raising enterprise AI security risks.

Hackers can steal your GitHub tokens through OpenAI’s Codex using nothing more than a sneaky branch name ...

OpenAI has urged macOS users to update its four apps after a security issue in its app-signing process, warning that older versions may stop working after May 8 ...

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious ...

OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing ...

Command injection in Codex and a hidden outbound channel in ChatGPT exposed risks of credential theft and covert data ...

OpenAI rotated macOS code‑signing certificate after Axios supply chain breach Malicious Axios 1.14.1 pulled into app‑signing ...

The ChatGPT maker said it found no evidence that its user data was accessed or that its systems or intellectual property were ...

OpenAI alerts macOS users about a security issue linked to Axios and urges immediate app updates to stay protected.

Security researchers at BeyondTrust Phantom Labs discovered a critical flaw in OpenAI's Codex coding agent that allowed an ...

A critical vulnerability in OpenAI Group PBC’s Codex coding agent could have exposed sensitive GitHub authentication tokens through a command injection flaw, according to a new report out today from ...