Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise
highnewsLLM-Specific
security
Source: SecurityWeekMarch 31, 2026
Summary
Researchers discovered a critical vulnerability in OpenAI Codex (an AI system that generates code) that could have allowed attackers to steal GitHub tokens (secret credentials used to access GitHub accounts). The vulnerability posed a serious security risk because compromised tokens could give attackers unauthorized access to code repositories and projects.
Classification
Attack Type
Data Extraction
Attack SophisticationModerate
Impact (CIA+S)
confidentialityintegrity
Affected Vendors
OpenAI
Related Issues
Monthly digest — independent AI security research
Original source: https://www.securityweek.com/critical-vulnerability-in-openai-codex-allowed-github-token-compromise/
First tracked: March 31, 2026 at 08:00 AM
Classified by LLM (prompt v3) · confidence: 75%