20:54
2026-06-03
thenextweb.com
ai-tools
A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month
A popular npm package for OpenAI Codex with 29,000 weekly downloads has been stealing developer authentication tokens for a month. The same credential-theft chain also ran through two Android apps witβ¦