ChatGPT’s Mac App Update Made The AI Agent Provide An Entire List Of Local Files And Directory Path Without Permission, Causing Panic For One User Over Lack Of Privacy

Jul 14, 2026 at 04:50pm EDT
Mac owner claims that the ChatGPT app bypassed security and began indexing files without permission

OpenAI rolled out an update for its ChatGPT app for Apple’s macOS, and while one user claims that the previous chat layout and project history were “completely messed up,” the update introduced what appears to be a terrifying shift in the AI agent’s behavior that could discourage other users who value their privacy.

Apparently, when asked where the missing projects were, ChatGPT showed an exact local directory path, which, according to the user, shouldn’t be possible without proper authorization. Based on this incident, it appears that the app is accessing and indexing local files on its own, which is a big no in the eyes of security buffs.

Related Story A $200 ChatGPT Pro Plan Helped An M5 Max MacBook Pro Customer Save $2,000 On His Purchase By Directing Him To A Retailer Who Forgot To Update The Price

While the ChatGPT app was also indexing hidden files, other users are quick to point out that this behavior is standard and arrives when a major update rolls out

It’s certainly a red flag that a macOS app that isn’t placed under “Full Disk Access” is going against the platform’s security protocols, but Redditor “Secret_Consequence48” might be blowing things out of proportion. Even though anyone noticing this pattern could become suspicious, another Redditor with the handle “UnfoldedHeart” provides the following explanation, stating that any Mac app has access to macOS’ local directory path.

“Yeah. Any Mac app has access to that. There are special permissions for certain folders (e.g. Documents) and the Full Disk Access permission (everything) but what you've described in your post is totally ordinary behavior for MacOS. Windows and Linux too, by the way. Unless an app (on ANY OS) is sandboxed in some manner, over and above normal permissions, it can tell you where your user profile is. You probably aren't aware of this, but that's where configuration files are typically saved and that's true for ChatGPT or Firefox or whatever app you use. That's what the user profile folder is for!!”

ChatGPT’s risk statement also mentions that the app can read and edit files in its workspace, and it can ask for additional access when needed. Until AI agents are given permission, they cannot act against the wishes of the user, which is what has perplexed the user in the first place. Fortunately, another Redditor with the username “fivetoedslothbear” is another commenter who’s pessimistic about the latest claims.

He states that “OpenAI replaced ChatGPT with something else. No, it's not bypassing privacy settings. Does the top left say "ChatGPT Codex" or "ChatGPT Work"? Then, it's actually running commands on your computer, just like doing an ls in Terminal. and that's how ChatGPT knows what files you have.” We also have to consider Apple’s current position on how it would treat such apps.

Putting aside the lawsuit between the two companies, it’s downright impossible for Apple to allow this, but if ChatGPT’s Mac app did perform a suspicious action, we recommend letting both technology firms know about it instead of seeking advice from others. After checking out the latest Reddit thread, it’s clear that more than half of the public doesn’t agree.

News Source: Reddit

About the author: Omar Sohail is a reporter and analyst for Wccftech's mobile section, specializing in the technology and business of the mobile industry. His expertise lies in the intricate hardware supply chain, covering developments in semiconductor manufacturing, chip lithography, and camera sensor technology.

Follow Wccftech on Google to get more of our news coverage in your feeds.