Terminal-Bench 2.1 and the June 2026 Benchmark Landscape: Why the Harness Matters More Than the Model for Codex CLI Developers

codex-cliterminal-benchbenchmarksharness-engineeringswe-benchcoding-agentsgpt-5.5performance

Terminal-Bench 2.1 and the June 2026 Benchmark Landscape: Why the Harness Matters More Than the Model for Codex CLI Developers

---

The June 2026 coding agent benchmark results are in, and they tell a story that most leaderboard chasers miss entirely. Codex CLI with GPT-5.5 tops Terminal-Bench 2.1 at 83.4% amongst named CLI agents¹, yet the same GPT-5.5 model scores 76.40% when run through the Terminus 2 harness on the same benchmark². That 7-point gap has nothing to do with the model and everything to do with the agent loop that wraps it.

This article unpacks the June 2026 benchmark landscape — Terminal-Bench 2.1, SWE-bench, the Agent Security League, and the Artificial Analysis composite index — and extracts the practical lessons Codex CLI developers should draw from the numbers.

Terminal-Bench 2.1: What Changed

Terminal-Bench originated as a research benchmark from the Laude Institute, published at ICLR 2026³. Version 2.1 is the verified revision, produced through a collaborative review process that fixed ambiguous task definitions and flawed validation scripts from the original 2.0 release².

The benchmark comprises 89 hand-crafted tasks spanning scientific computing, software engineering, machine learning, security, system administration, and data science⁴. Each task drops the agent into a Docker container with an instruction, a time limit, and a set of pytest validations. The agent must pass all tests to receive credit — there is no partial scoring.

Two methodological shifts distinguish 2.1 from its predecessors:

1. Time-based limits replaced turn limits. Agents that think longer but act fewer times are no longer penalised².
2. Infrastructure moved from EC2 to Daytona. Remote evaluation via Daytona sandboxes reduced infrastructure variance between runs².

These changes particularly benefit agents with sophisticated planning phases — and Codex CLI’s reasoning-effort-tunable loop is one of them.

The June 2026 Leaderboard

graph LR
    subgraph "Terminal-Bench 2.1 — Agent+Model Pairings (tbench.ai)"
        A["Codex CLI + GPT-5.5<br/>83.4%"] --> B["Claude Code + Opus 4.8<br/>78.9%"]
        B --> C["Terminus 2 + GPT-5.5<br/>78.2%"]
        C --> D["Terminus 2 + Gemini 3 Pro<br/>74.4%"]
        D --> E["Gemini CLI + Gemini 3.1 Pro<br/>70.7%"]
        E --> F["Claude Code + Opus 4.7<br/>69.7%"]
    end

The full rankings from tbench.ai as of 9 June 2026¹:

Rank	Agent + Model	Score
1	Codex CLI + GPT-5.5	83.4%
2	Claude Code + Opus 4.8	78.9%
3	Terminus 2 + GPT-5.5	78.2%
4	Terminus 2 + Gemini 3 Pro	74.4%
5	Gemini CLI + Gemini 3.1 Pro	70.7%
6	Claude Code + Opus 4.7	69.7%

Note the critical detail: GPT-5.5 appears twice — once at 83.4% inside Codex CLI, once at 78.2% inside Terminus 2. The model is identical; the harness engineering accounts for the 5.2-point spread.

The Harness-Model Decoupling Thesis

This is the single most important insight from the June 2026 benchmark cycle: the same model scores differently inside different agents¹. The agent’s tool loop, sandbox configuration, file-handling strategy, retry logic, and verification patterns are not incidental — they are co-equal determinants of performance.

Endor Labs’ Agent Security League reinforces this finding from the security angle. GPT-5.5 sits at the top of the code security board when wrapped by Cursor, but only ties for third when wrapped by Codex CLI⁵. Within the same week, the same model, two different harnesses, two materially different security outcomes. As Endor Labs put it: “the harness shapes outcomes more than the model alone”⁵.

flowchart TD
    M["GPT-5.5 (Base Model)"] --> H1["Codex CLI Harness"]
    M --> H2["Terminus 2 Harness"]
    M --> H3["Cursor Harness"]

    H1 --> R1["Terminal-Bench: 83.4%"]
    H2 --> R2["Terminal-Bench: 78.2%"]
    H3 --> R3["Security League: #1"]
    H1 --> R4["Security League: #3 (tied)"]

    style M fill:#f9f,stroke:#333
    style H1 fill:#bbf,stroke:#333
    style H2 fill:#bfb,stroke:#333
    style H3 fill:#fbf,stroke:#333

For Codex CLI developers, this means your config.toml settings, AGENTS.md instructions, hook configurations, and permission profiles are not cosmetic — they are performance-critical infrastructure.

Where Codex CLI Leads and Where It Trails

No single agent sweeps every benchmark. The June 2026 numbers tell a nuanced story:

Codex CLI strengths

• Terminal-native workflows: 83.4% on Terminal-Bench 2.1, the highest score of any named CLI agent¹. Codex CLI’s OS-native sandbox and deep shell integration give it an edge on tasks involving process management, filesystem operations, and multi-step terminal workflows.
• SWE-bench Verified: GPT-5.5 scores 82.60% on SWE-bench Verified⁶, and has been reported as high as 88.7% in some evaluations⁷. This benchmark tests single-repository bug fixes with known solutions.
• Token efficiency: Codex CLI uses approximately 4x fewer tokens than Claude Code for equivalent tasks⁸, which matters when you are paying per million tokens.

Where others lead

• SWE-bench Pro (complex repository tasks): Claude Opus 4.8 leads at 69.2%, with Claude Fable 5 extending that to 80.3%⁹. GPT-5.5 scores 58.6% on this harder variant⁷. SWE-bench Pro tests longer-horizon, production-style fixes that require reasoning across multiple files and understanding broader codebase context.
• SWE-bench Verified (absolute top): Claude Fable 5 (released 9 June 2026) reaches 95.0% on SWE-bench Verified⁹, surpassing GPT-5.5’s score by a significant margin.
• Composite intelligence: The Artificial Analysis Intelligence Index v4.0 places Claude Opus 4.8 first at 61.4, with GPT-5.5 close behind at 60.2¹⁰. This composite aggregates 10 evaluations across reasoning, coding, agentic tool use, science, and long-context retrieval.

The practical interpretation

quadrantChart
    title Benchmark Strengths by Agent (June 2026)
    x-axis "Terminal / CLI Tasks" --> "Repository / Multi-File Tasks"
    y-axis "Lower Performance" --> "Higher Performance"
    Codex CLI + GPT-5.5: [0.2, 0.85]
    Claude Code + Opus 4.8: [0.7, 0.75]
    Claude Fable 5: [0.8, 0.95]
    Gemini CLI + 3.1 Pro: [0.3, 0.55]

Codex CLI dominates terminal-native, sandbox-first workflows. Claude Code leads on complex multi-file repository reasoning. Neither tool sweeps every category. If your daily work is CI triage, infrastructure scripting, and single-service changes, Codex CLI’s benchmark profile aligns with your workflow. If you spend your days on large cross-cutting refactors across sprawling codebases, the SWE-bench Pro numbers are more relevant.

What Codex CLI’s Harness Does Differently

Understanding why Codex CLI scores well on Terminal-Bench helps you configure it for your own workflows. Several architectural decisions contribute:

OS-native sandboxing

Codex CLI uses operating system-level isolation (macOS Seatbelt, Linux namespaces, Windows restricted tokens) rather than Docker containers¹¹. On Terminal-Bench’s Docker-based tasks, this means the agent’s own sandbox does not conflict with the benchmark’s container — a subtle advantage that container-in-container harnesses must work around.

Reasoning effort tuning

The --reasoning-effort flag (or per-profile reasoning_effort in config.toml) lets the model trade speed for depth¹². On hard Terminal-Bench tasks — where 93.3% of human-rated “hard” tasks are also empirically hard for agents⁴ — higher reasoning effort yields measurable gains.

# Profile tuned for complex terminal tasks
[profiles.deep]
model = "gpt-5.5"
reasoning_effort = "high"

Verification loops

Codex CLI’s PostToolUse hooks enable verification after every tool call¹³. On Terminal-Bench tasks where the agent must iteratively build, test, and fix, these hooks catch failures early rather than accumulating errors across a long action sequence.

Tool call efficiency

Codex CLI’s sandbox allows direct filesystem and process operations without routing through MCP tool calls for basic actions¹¹. This reduces the token overhead per step, which compounds over the 89 tasks in the benchmark suite.

How to Use Benchmarks Without Being Misled

Senior developers should approach the June 2026 leaderboards with the following principles:

1. Always read agent+model pairings, not models in isolation. A “GPT-5.5 score” is meaningless without knowing which harness produced it. Terminal-Bench explicitly reports agent-model combinations because “the agent can make [a significant] difference on performance”¹⁴.

2. Match the benchmark to your workflow. Terminal-Bench tests terminal-native tasks in isolated containers. SWE-bench Pro tests multi-file repository fixes. The Agent Security League tests secure code generation. Your daily work probably overlaps with one category more than the others — weight your tool selection accordingly.

3. Check the evaluation harness. Terminal-Bench 2.1 on vals.ai uses the Terminus 2 harness for all models, producing an apples-to-apples model comparison². Terminal-Bench on tbench.ai uses each agent’s native harness, producing an apples-to-apples tool comparison. Both are valid; they answer different questions.

4. Watch for fallback configurations. Claude Fable 5’s 80.52% on vals.ai used Claude Opus 4.8 as a fallback for model refusals². This is a valid production pattern but complicates interpretation — you are benchmarking a model ensemble, not a single model.

5. Benchmark your own tasks. The most relevant benchmark is the one you run on your codebase. Codex CLI’s codex exec with --output-schema can produce structured pass/fail results against your own test suites, giving you a private leaderboard that actually reflects your work¹⁵.

The Bigger Picture: Benchmark Convergence

The June 2026 numbers show the top tier of coding agents converging. The gap between first and sixth place on Terminal-Bench 2.1 is 13.7 points (83.4% to 69.7%)¹. Six months ago, the spread was wider. As models and harnesses improve in parallel, the marginal gains from switching agents shrink.

What has not converged is cost. Codex CLI’s 4x token efficiency advantage⁸ means that for equivalent Terminal-Bench performance, your monthly API bill is substantially lower. At typical enterprise usage of 100–200 USD per developer per month¹⁶, a 4x token efficiency gap translates directly into either cost savings or the ability to run more tasks within the same budget.

The practical takeaway for June 2026: invest in harness engineering — your AGENTS.md files, hook configurations, profile tuning, and sandbox policies — rather than chasing the next model release. The benchmarks show that a well-configured Codex CLI with GPT-5.5 outperforms a default-configured alternative with a nominally superior model. Configuration is the new competitive advantage.

Citations

1. MorphLLM — Best AI Coding Agent (2026): Ranked by Terminal-Bench, Price, and Source ↩ ↩² ↩³ ↩⁴ ↩⁵

2. Vals.ai — Terminal-Bench 2.1 ↩ ↩² ↩³ ↩⁴ ↩⁵ ↩⁶

3. Terminal-Bench: Benchmarking Agents on Hard, Realistic Tasks in Command Line Interfaces — ICLR 2026 ↩

4. Epoch AI — Terminal-Bench 2.0 ↩ ↩²

5. Endor Labs — GPT-5.5 Sets a New Code Security Record with Cursor, not Codex, in Agent Security League ↩ ↩²

6. Vals.ai — SWE-bench Verified ↩

7. MorphLLM — Codex vs Claude Code (June 2026) ↩ ↩²

8. CodeAnt — Claude Code CLI vs Codex CLI vs Gemini CLI: Best AI CLI Tool for Developers in 2026 ↩ ↩²

9. MorphLLM — SWE-bench Pro Leaderboard (2026) ↩ ↩²

10. Artificial Analysis — AI Coding Agent Benchmarks & Leaderboard ↩

11. OpenAI Developers — Sandbox (Codex) ↩ ↩²

12. OpenAI Developers — Configuration Reference ↩

13. OpenAI Developers — Agent Approvals & Security ↩

14. Epoch AI — Terminal-Bench 2.0 Methodology ↩

15. OpenAI Developers — Codex CLI Reference ↩

16. OpenAI Developers — Codex Pricing ↩