// ChatgptMEDIUM
OpenAI disclosed that two employee devices were impacted by a software supply-chain attack against the TanStack open-source library, part of a broader campaign tracked as Mini Shai-Hulud that compromised the package on May 11, 2026. The malicious code performed credential-focused exfiltration and accessed a limited subset of internal source code repositories. As a precaution, OpenAI is forcing all ChatGPT Mac desktop app users to update their client between now and June 12, 2026. OpenAI states it has found no evidence that user data was accessed or that its production systems were compromised. Mac app users should install the update promptly when prompted.
- A security breach means you must update the ChatGPT Mac app(opens in a new tab)
- The ChatGPT desktop app for Mac just got hit with a security bre(opens in a new tab)
- OpenAI confirms security breach in TanStack supply chain attack,(opens in a new tab)
- OpenAI Issues Urgent Security Warning for Mac Users After Intern(opens in a new tab)
- OpenAI Says Hackers Stole Some Data After Latest Code Security I(opens in a new tab)
// Get alerts for Chatgpt