What happened with OpenAI’s macOS signing workflow OpenAI said a GitHub workflow used to sign its macOS apps downloaded a malicious copy of the Axios library on March 31. The key detail is that OpenAI framed it as a supply chain problem confined to the signin…
OpenAI macOS signing workflow downloaded malicious Axios? #tech
On March 31, OpenAI's macOS signing workflow unintentionally downloaded a malicious version of the Axios library due to a supply chain compromise. This affected OpenAI's macOS desktop applications and users downloading signed versions during the compromise window.