{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreibq2tudedbe7s5gezond4p7pdaglb43tvgzorpoywwme2nw6buv7e",
    "uri": "at://did:plc:ctcqaqa3tlbhfwmfefti346h/app.bsky.feed.post/3mnarq63wxw52"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreicsw3l5zotruccah3w7wfxpiliwp6euaz653f5246mps5hjxm5pxm"
    },
    "mimeType": "image/jpeg",
    "size": 43017
  },
  "path": "/pro/security/openai-codex-tool-with-over-29-000-downloads-linked-to-malicious-npm-supply-chain-attack-stealing-authentication-tokens",
  "publishedAt": "2026-06-01T19:05:00.000Z",
  "site": "https://www.techradar.com",
  "tags": [
    "Security",
    "Cyber Security",
    "Computing Security",
    "Pro",
    "Computing"
  ],
  "textContent": "A tool started benign and turned sour after a little while, stealing tokens and granting persistent access.",
  "title": "OpenAI Codex tool with over 29,000 downloads linked to malicious npm supply chain attack stealing authentication tokens"
}