OpenAI's TanStack Supply Chain Breach: What the Codex CLI Cert Rotation Means for Your Dev Toolchain
OpenAI confirmed two employee devices were hit by the Mini Shai-Hulud npm supply chain attack, exposing code-signing certificates for Codex CLI, ChatGPT Desktop, and Atlas. macOS users must update before June 12 or their apps will stop working.
via OpenAI