Pedro José Pereira VieitoJul 1, 2024

The OpenAI ChatGPT app on macOS is not sandboxed and stores all the conversations in **plain-text** in a non-protected location:

~/Library/Application\ Support/com.openai.chat/conversations-{uuid}/

So basically any other running app / process / malware can read all your ChatGPT conversations without any permission prompt:

Show threadPedro José Pereira VieitoJul 2, 2024

macOS has blocked access to any user private data since macOS Mojave 10.14 (6 years ago!). Any app accessing private user data (Calendar, Contacts, Mail, Photos, any third-party app sandbox, etc.) now requires explicit user access.

OpenAI chose to opt-out of the sandbox and store the conversations in plain text in a non-protected location, disabling all of these built-in defenses.

Show threadPedro José Pereira Vieito

Just for reference: Good news! The new ChatGPT version now encrypts the local chats: https://www.theverge.com/2024/7/3/24191636/openai-chatgpt-mac-app-conversations-plain-text

I continue hoping they sandbox the app in the future for improved protection.

OpenAI’s ChatGPT Mac app was storing conversations in plain text

OpenAI updated its ChatGPT macOS app on Friday after users discovered it stored conversations insecurely in plain text.

The Verge
Jul 4, 2024 at 10:22amIvory for Mac
Show threadPedro José Pereira VieitoJul 9, 2024
New post recapping last week's ChatGPT saga with extra details: https://pvieito.com/2024/07/chatgpt-unprotected-conversations
ChatGPT for Mac was storing all conversations in an unprotected location - PVIEITO