OpenAI is forcing Mac users to update ChatGPT and other desktop apps soon, after a supply chain attack exposed signing certificates that Apple's security systems use to verify trusted software. The company disclosed the incident on May 13 and confirmed malware linked to the "Mini Shai-Hulud" attack infected two employee devices through the TanStack npm ecosystem. Investigators identified unauthorized access activity in a limited set of internal source code repositories connected to those employees. OpenAI rotated its signing certificates and re-signed affected apps to prevent potential misuse of the exposed credentials. The company found no evidence that customer data, production systems, or intellectual property were compromised during the incident. Apple's macOS security protections will block apps signed with the older certificates after June 12, which makes the update mandatory for affected Mac users.…