OPENAI disclosed that two of its employee devices in its corporate environment were affected by the Mini Shai-Hulud supply chain attack on TanStack, with no user data, production systems, or intellectual property compromised or modified in an unauthorized manner. The company said the activity included unauthorized access and credential-focused exfiltration in a limited subset of internal source code repositories to which the two impacted employees had access.
In response, OpenAI isolated the impacted systems, revoked user sessions, rotated credentials across affected repositories, temporarily restricted code-deployment workflows, and audited behaviour. Because the affected repositories included signing certificates for iOS, macOS, and Windows products, the firm revoked those certificates and issued new ones, meaning macOS users of ChatGPT Desktop, Codex App, Codex CLI, and Atlas must update to the latest versions; Windows and iOS users do not need to take action.
The certificates are scheduled to be revoked on 12 June 2026, after which downloads and launches of apps signed with the previous certificate will be blocked by macOS protections. This marks the second rotation of OpenAI’s macOS code-signing certificates within a few months, following an earlier rotation in April 2026.