Codex Computer Use on Windows: Desktop Automation, QA Testing, and GUI-Driven Agent Workflows

Computer Use landed on Windows with Codex app version 26.527, released on 29 May 2026 ¹. For the first time, Codex can see, click, and type inside Windows desktop applications — operating the graphical interface the same way a human tester would. This article covers the architecture, configuration, practical QA workflows, and the community MCP plugin that extends Computer Use beyond what ships in the box.

What Computer Use Actually Does

Computer Use gives Codex the ability to interact with graphical user interfaces rather than being confined to the terminal and file system ². The agent captures screenshots of the active desktop, reasons about what it sees, and then issues mouse clicks, keyboard input, and scroll actions to drive applications through their flows.

On macOS, Computer Use debuted in April 2026 and supports background operation via a locked-desktop feature that temporarily unlocks the display during active turns ². On Windows, the model is simpler and more constrained: Codex takes over the foreground, and you cannot use the same desktop session while a Computer Use task runs ².

sequenceDiagram
    participant U as User
    participant C as Codex Agent
    participant D as Windows Desktop
    participant A as Target Application

    U->>C: Prompt with @Computer or @AppName
    C->>D: Request screenshot
    D-->>C: Desktop frame (PNG)
    C->>C: Vision reasoning
    C->>D: Mouse/keyboard actions
    D->>A: Input forwarded
    A-->>D: UI state change
    D-->>C: Updated screenshot
    C->>U: Findings report

Setup and Prerequisites

Installing the Computer Use Plugin

Computer Use is delivered as a first-party plugin, not baked into the core runtime ². Install it from the Codex app settings before requesting any desktop operations:

Open Settings → Plugins in the Codex desktop app.
Locate Computer Use and click Install.
Restart the app if prompted.

No additional permissions are required on Windows beyond keeping the target application visible on the active desktop ². This contrasts with macOS, which requires both Screen Recording and Accessibility permissions at the OS level ².

System Requirements

Requirement	Detail
OS	Windows 11 recommended; Windows 10 build 1809+ best effort ³
Codex app	Version 26.527 or later ¹
Sandbox	Elevated sandbox preferred for strongest isolation ³
Desktop	Interactive session — no headless or RDP-minimised windows

Sandbox Configuration

Codex on Windows ships with two native sandbox modes ³. When running Computer Use, the elevated sandbox provides stronger isolation through dedicated lower-privilege users and firewall rules:

[windows]
sandbox = "elevated"

File edits and shell commands still follow your configured approval and sandbox settings even while Computer Use is active ². Desktop GUI interactions sit outside the sandbox boundary — Codex can click anything visible on screen — which is why the per-app approval prompt exists.

Activation and Prompting

Trigger Computer Use by mentioning @Computer in your prompt, referencing a specific application by name (e.g. @Chrome, @Paint), or simply describing the GUI workflow you want performed ². Codex requests approval before interacting with each application. You can allow one-time access or select “Always allow” for trusted applications ².

Effective Prompting Patterns

The official QA use-case guide recommends being explicit about environment state, naming the issue types you care about, and specifying whether blocking bugs should halt the test run ⁴:

@Computer Test my app running at http://localhost:3000.

Test these flows:
- User registration with email and password
- Dashboard data load after login
- Settings page form validation

For every bug you find, include:
- Repro steps
- Expected result
- Actual result
- Severity (critical / major / minor / cosmetic)

Keep going past non-blocking issues and end with a
short triage summary.

Including account state, test data, and feature flags upfront produces significantly better results than leaving the agent to guess ⁴.

Windows-Specific Constraints

Foreground Takeover

On Windows, Computer Use operates on the active desktop and takes over the pointer and keyboard ². You cannot use the same session concurrently. Three workarounds exist:

Secondary device — monitor and steer the task from ChatGPT on iOS or Android ¹.
Virtual machine — run Codex inside a Windows VM and continue working on the host.
Walk away — let the task run unattended and review the findings when it finishes.

The macOS locked-use feature, which temporarily unlocks the display during active Computer Use turns and relocks on local input ², has no Windows equivalent at the time of writing.

What Computer Use Cannot Do

Several operations are explicitly blocked for security reasons ²:

Terminal applications — Codex already has shell access; Computer Use adds GUI, not terminal, control.
Self-automation — Codex cannot drive its own UI, preventing sandbox or approval policy bypass.
Administrator authentication — UAC prompts and security dialogs are out of scope.
Background operation — unlike macOS, Windows Computer Use requires the foreground.

Regional Availability

Computer Use on Windows is unavailable in the European Economic Area, the United Kingdom, and Switzerland at launch ². ⚠️ OpenAI has not published a timeline for expanding availability to these regions.

QA Testing Workflows

Computer Use is a natural fit for QA because it exercises the same interface a real user sees ⁴. It can catch functional bugs, layout regressions, broken interactions, and confusing copy in a single pass.

flowchart LR
    A[Define test plan] --> B[Start Computer Use task]
    B --> C[Codex drives UI flows]
    C --> D{Bug found?}
    D -->|Non-blocking| E[Log and continue]
    D -->|Blocking| F[Log and flag severity]
    E --> C
    F --> C
    C --> G[Triage summary]
    G --> H[Fix bugs in same thread]
    H --> I[File issues to Linear/GitHub]

Post-Run Triage

After the QA pass completes, the thread remains active ⁴. You can:

Ask Codex to fix identified bugs directly in the codebase.
Convert findings into GitHub or Linear issues with structured fields.
Narrow subsequent passes to specific failing flows for regression checks.

Combining Computer Use with CLI Testing

A powerful pattern combines GUI-level Computer Use with Codex’s existing CLI capabilities. Run unit and integration tests through the terminal, then use Computer Use to verify the visual output:

Run `npm test` to check unit tests pass, then @Computer open
http://localhost:3000 in Chrome and verify the dashboard renders
correctly with the test fixtures. Compare what you see against
the design spec in docs/dashboard-spec.png.

This catches the class of bugs where tests pass but the rendered output is visually broken — misaligned layouts, missing icons, incorrect colour values.

Community MCP Plugin: Extended Desktop Control

The official Computer Use plugin covers common workflows, but the community ezpzai/codex-computer-use-windows plugin provides over 30 additional tools through a local MCP server ⁵. These include:

Category	Tools
Screen	`screenshot`, `screenshot_active_window`, `observe_screen`, `get_screen_size`, `extract_text`
Input	`click`, `move_mouse`, `drag_mouse`, `type_text`, `press_key`, `hotkey`, `scroll`
Window	`list_windows`, `focus_window`, `run_program`, `open_app`, `get_window_text`
Chrome	`get_url`, `get_tab_title`, `navigate`, `search`, `read_page_content`
UI Automation	Element tree inspection, element detection and interaction
Clipboard	Read and write clipboard content

Installation

git clone https://github.com/ezpzai/codex-computer-use-windows.git `
  "$HOME\.codex\plugins\computer-use-windows"

Then create or update ~/.agents/plugins/marketplace.json with a local plugin entry pointing to ./.codex/plugins/computer-use-windows ⁵. After restarting Codex, install from Plugins → Local Plugins. The plugin requires Python 3.10+ with the py launcher ⁵.

This MCP-based approach means the tools are also available from Codex CLI via codex mcp add, not just the desktop app — enabling headless automation scenarios where the CLI drives a visible desktop session.

Safety and Security Considerations

Computer Use on Windows demands more caution than CLI-only workflows because the agent interacts with your live desktop session:

Browser sessions — Codex interacts with pages where you are already signed in. Sites treat clicks and form submissions as your account actions ².
Sensitive applications — keep applications with credentials, payment details, or security settings closed unless they are the explicit target of the task ².
Per-app approval — review each application approval prompt rather than blanket-allowing everything. Use “Always allow” only for trusted, low-risk applications ².
Stay present for sensitive operations — account settings, payment flows, and security configurations should not run unattended ².

Screenshots captured during Computer Use are subject to your ChatGPT data controls and privacy settings ².

Practical Recipe: Windows Desktop Application Testing

Here is a complete workflow for testing a Windows Forms or WPF application:

@Computer Launch MyApp.exe from C:\Projects\MyApp\bin\Release.

Test plan:
1. Main window — verify all toolbar buttons are enabled and correctly labelled
2. File → New — create a new document, type sample text, verify it appears
3. File → Save As — save to Desktop, close and reopen, verify content persists
4. Edit → Preferences — change theme to Dark, verify the UI repaints
5. Window → Split View — verify both panes show content
6. Help → About — verify version string matches 2.4.1

For each issue found, capture a screenshot and note:
- Exact menu path or button
- Expected vs actual behaviour
- Severity

End with a summary table of all findings.

This approach works for any Windows GUI application — Electron apps, WinUI 3, WPF, Win32, or browser-based tools accessed through Chrome.

What This Means for Development Teams

Computer Use on Windows closes the last major gap in Codex’s testing capabilities. CLI-driven test suites catch logic errors; Computer Use catches the visual and interaction bugs that only appear when a human (or agent) actually uses the interface.

For teams already using Codex CLI for code generation and review, adding Computer Use to the QA phase creates an end-to-end workflow: write the code with the CLI agent, then verify the result with the GUI agent — all within the same Codex thread. The limitation is real — you lose your desktop while tasks run — but for overnight regression suites, CI-triggered VM sessions, or quick pre-merge smoke tests, that trade-off is worthwhile.

Citations

OpenAI, “Codex for (almost) everything” (May 2026), https://openai.com/index/codex-for-almost-everything/ ↩ ↩² ↩³
OpenAI Developers, “Computer Use – Codex app” (2026), https://developers.openai.com/codex/app/computer-use ↩ ↩² ↩³ ↩⁴ ↩⁵ ↩⁶ ↩⁷ ↩⁸ ↩⁹ ↩¹⁰ ↩¹¹ ↩¹² ↩¹³ ↩¹⁴ ↩¹⁵ ↩¹⁶ ↩¹⁷ ↩¹⁸
OpenAI Developers, “Windows – Codex” (2026), https://developers.openai.com/codex/windows ↩ ↩² ↩³
OpenAI Developers, “QA your app with Computer Use” (2026), https://developers.openai.com/codex/use-cases/qa-your-app-with-computer-use ↩ ↩² ↩³ ↩⁴
ezpzai, “codex-computer-use-windows” (2026), https://github.com/ezpzai/codex-computer-use-windows ↩ ↩² ↩³