Credit: The original article is published here.
Researchers managed to steal GitHub OAuth tokens by abusing a command injection vulnerability.
‘Not just development tools’: Security experts discover critical flaw in OpenAI’s Codex which could compromise entire enterprise organizations
![[Aggregator] Downloaded image for imported item #114069](https://kcmicro.com/wp-content/uploads/2026/03/security_USSF_AP25151264788854-800x500.jpg "[Aggregator] Downloaded image for imported item #114069")
![[Aggregator] Downloaded image for imported item #114048](https://kcmicro.com/wp-content/uploads/2026/03/BbL6AkkGFQVYn7hmAdbNMo-1280-80.jpg "[Aggregator] Downloaded image for imported item #114048")
![[Aggregator] Downloaded image for imported item #114000](https://kcmicro.com/wp-content/uploads/2026/03/Stranded_Lead-scaled-800x500.jpg "[Aggregator] Downloaded image for imported item #114000")