{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreia6wwlisu3si7o65togamtohk7bkfzwdqhskyakg3n6bmn5mwnvaq",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mnabfwrlxze2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreiesdgrgsm43tkyjconrcwiheigmuatcrf6yd766xtpf4cyxgfc2pu"
    },
    "mimeType": "image/png",
    "size": 107676
  },
  "path": "/2026/06/openai-codex-authentication-tokens.html",
  "publishedAt": "2026-06-01T09:31:15.000Z",
  "site": "https://thehackernews.com",
  "textContent": "Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-looking remote web UI.\n\nThe tool, named codexui-android, is advertised on GitHub and npm as a remote web UI for OpenAI Codex, attracting over 29,000 weekly downloads. The package is still available for download from the repository.\n\nWhat",
  "title": "OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack"
}