← Back to BrewedIntel
otherhighCode-Signing CompromiseSupply Chain AttackAxios

Apr 13, 2026 • Lawrence Abrams

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating macOS code-signing certificates following a supply chain attack where a GitHub Actions workflow executed a malicious version of the Axios...

Source
Bleeping Computer
Category
other
Severity
high

Executive Summary

OpenAI is rotating macOS code-signing certificates following a supply chain attack where a GitHub Actions workflow executed a malicious version of the Axios package. The compromise targeted OpenAI's code-signing infrastructure, potentially exposing signing credentials and enabling threat actors to sign malicious software as legitimate. OpenAI is taking remediation steps by rotating affected certificates to prevent further exploitation of the compromised workflow. Organizations utilizing CI/CD pipelines with external dependencies should implement strict dependency verification, employ package integrity checks, and apply least-privilege principles to code-signing processes to mitigate similar supply chain risks.

Summary

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply chain attack. [...]

Published Analysis

OpenAI is rotating macOS code-signing certificates following a supply chain attack where a GitHub Actions workflow executed a malicious version of the Axios package. The compromise targeted OpenAI's code-signing infrastructure, potentially exposing signing credentials and enabling threat actors to sign malicious software as legitimate. OpenAI is taking remediation steps by rotating affected certificates to prevent further exploitation of the compromised workflow. Organizations utilizing CI/CD pipelines with external dependencies should implement strict dependency verification, employ package integrity checks, and apply least-privilege principles to code-signing processes to mitigate similar supply chain risks. OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply chain attack. [...] OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply chain attack. [...]

Linked Entities

  • Axios
Read original source