Hey everyone, I just experienced a massive privacy breach with the latest ChatGPT desktop app update on an M4 Mac running macOS Tahoe latest, and wanted to warn you all.
The app performed an automatic background self update, which completely messed up my previous chat layout and project history, making it look like a fresh local install.
When I asked the AI where my missing projects were, it unexpectedly printed out an exact local directory path of my Mac user profile.
Knowing this shouldn't be technically possible without prior authorization, I pushed further and asked the AI to list the contents of that directory. To my absolute shock, it printed out a complete list of my local files, and it explicitly included all of my hidden files ... yes the dot.files! directly into the chat window.
But..... ChatGPT app or nothing related, is listed under Full Disk Access, Files and Folders, or Accessibility in my System Settings.
And It always had zero permissions granted, before the update, and yet it is actively indexing and reading local system paths!!!