Vulnerability Advisory
CVE-2026-33634
OpenAI has revoked and rotated its macOS app signing certificate after its GitHub Actions workflow downloaded the North Korea-linked malicious Axios npm package. ChatGPT Desktop, Codex, and Atlas users must update before May 8, 2026 or their apps will stop working on macOS.
Severity
critical
CVSS Score
9 / 10
Fix Status
No patch yet
Exploitation
Actively exploited
Published
Apr 13, 2026
Affected Products
- ›ChatGPT Desktop — versions below 1.2026.071
- ›Codex App — versions below 26.406.40811
- ›Codex CLI — versions below 0.119.0
- ›Atlas — versions below 1.2026.84.2
- ›Any npm project using Axios versions 1.14.1 or 0.30.4
Key Facts
- ›OpenAI has confirmed its macOS app-signing GitHub Actions workflow downloaded the North Korea-backdoored Axios npm package version 1.14.1 on March 31, exposing the signing certificate used to authenticate ChatGPT Desktop, Codex, Codex CLI, and Atlas as trusted OpenAI software.
- ›OpenAI found no evidence that the certificate was successfully stolen or that user data was compromised, but is treating the certificate as compromised and revoking it entirely — a standard and correct incident response posture when certificate exposure cannot be ruled out with certainty.
- ›All macOS users of OpenAI apps must update to the new certificate-signed versions before May 8, 2026. After that date, older app versions will be blocked by macOS security protections and will stop launching — this is not optional.
- ›This incident is part of a sweeping software supply chain attack wave in March 2026 that also compromised Trivy, LiteLLM, Telnyx, and two Checkmarx GitHub Actions workflows — with Google warning that hundreds of thousands of stolen secrets from these attacks are now potentially circulating in the wild.
Full Analysis
OpenAI Revokes macOS App Certificate After North Korea's Axios Supply Chain Attack — Update ChatGPT Before May 8
Deep-dive: technical breakdown, real-world impact, complete remediation steps, and expert context.
Read the full report →