Till Friday, OpenAI’s not too long ago launched ChatGPT macOS app had a probably worrying safety concern: it wasn’t arduous to search out your chats saved in your pc and skim them in plain textual content. That meant that if a foul actor or malicious app had entry to your machine, they may simply learn your conversations with ChatGPT and the info contained inside them.
As demonstrated by Pedro José Pereira Vieito on Threads, the benefit of entry meant it was doable to have one other app entry these information and present you the textual content of your conversations proper after they occurred. Pereira Vieito shared the app he made with me, and I used it to make a video displaying how the app can learn my ChatGPT conversations with the clicking of a button. I used to be additionally capable of finding the information on my pc and see the textual content of conversations simply by altering the file title.
After The Verge contacted OpenAI concerning the concern, the corporate launched an replace that it says encrypts the chats. “We’re conscious of this concern and have shipped a brand new model of the applying which encrypts these conversations,” OpenAI spokesperson Taya Christianson says in a press release to The Verge. “We’re dedicated to offering a useful person expertise whereas sustaining our excessive safety requirements as our know-how evolves.”
After downloading the replace, Pereira Vieito’s app now not works for me, and I can’t see my conversations in plain textual content.
I requested Pereira Vieito how he found the unique concern. “I used to be interested in why [OpenAI] opted out of utilizing the app sandbox protections and ended up checking the place they saved the app knowledge,” he mentioned. OpenAI solely presents the ChatGPT macOS app by its own website, which means the app doesn’t must comply with Apple’s sandboxing necessities that apply to software program distributed by way of the Mac App Retailer.
Except you’ve opted out, OpenAI might assessment ChatGPT conversations for safety and to coach its fashions. However that privilege isn’t one you’d anticipate to increase to unknown third events that get entry and know the place to look.