OpenAI Codex

June 1, 2026

OpenAI Codex Tokens Stolen in npm Supply Chain Attack

Malicious npm package codexui-android stole OpenAI Codex authentication tokens. Here's what developers need to know and how to protect your projects.