Enterprise & Governance
Articles on enterprise deployment patterns, governance frameworks, compliance and organisational adoption of Codex.
144 articles
Codex CLI Permission Profile Inheritance: Composable Security Policies and List APIs in v0.133
Permission profiles have been part of Codex CLI since early 2026, but they suffered from a composability problem. Every team that wanted a shared base.
Codex CLI v0.133 Extension Lifecycle Events: Building Observability Plugins with SubagentStart, ToolExecution, and TurnMetadata
Before v0.133, Codex CLI's hook system gave plugins six interception points: SessionStart, PreToolUse, PostToolUse, PermissionRequest, UserPromptSubmit.
Codex Computer Use and Locked Mac Remote Desktop: How CUA Turns Codex into a GUI Agent
Published: 2026-05-22 Sources: OpenAI Computer Use docs, OpenAI Use Cases, OpenAI Changelog v26.519, TestingCatalog coverage, Knightli enterprise access.
Codex CLI Execution Policy Rules: Starlark-Based Command Governance, Smart Approvals, and Enterprise Allowlists
Every time Codex CLI proposes a shell command, something has to decide whether that command runs silently, pauses for approval, or gets blocked outright.
Codex CLI MITM Hooks: HTTPS Request Interception, Header Mutation, and Network-Level Policy Enforcement
Codex CLI's sandbox has always controlled what an agent can do on disk and whether it can reach the network.
Codex CLI Security Testing Tools: codex sandbox, codex execpolicy, and Offline Policy Validation
Codex CLI ships two subcommands that most developers never discover: codex sandbox and codex execpolicy check. Together, they let you validate your security.
Codex CLI v0.133.0-alpha: SubagentStart Hooks, Goal DB, and Permission Profile APIs — Signals for Multi-Agent Orchestration
Between the stable v0.132.0 release on 20 May 2026 and the same evening, OpenAI shipped three alpha pre-releases — v0.133.0-alpha.1 through alpha.3.
Codex Remote Connections: Mobile Pairing, SSH Hosts, and Enterprise Access Tokens
Codex has quietly evolved from a single-machine terminal tool into a multi-surface development platform. The remote connections system — spanning mobile.
Google Agents CLI vs Codex CLI: Two Visions of Agent Development from the Terminal
This comparison hinges on a single architectural insight: Codex CLI IS the coding agent; Google Agents CLI builds agents ON Google Cloud. They occupy.
Red-Teaming Codex CLI Agents with Promptfoo: Adversarial Security Testing for Coding Agent Workflows
Most teams running Codex CLI in production have evals. Fewer have adversarial evals. The distinction matters: standard evals verify that the agent produces.
Secure MCP Tunnel: Connecting Codex CLI to Private MCP Servers Without Opening Inbound Ports
Enterprise teams running internal MCP servers — wrapping proprietary databases, CI systems, or compliance tools — face a persistent tension.
Codex CLI Enterprise Admin Setup: RBAC, Managed Configuration, and Compliance APIs
On 14 May 2026, OpenAI published the first dedicated Enterprise Admin Setup guide for Codex, consolidating workspace enablement, RBAC, managed.
Codex On-Premises: The Dell AI Factory Partnership, Hybrid Deployment, and What It Means for Data-Sovereign Enterprises
On 18 May 2026, OpenAI and Dell Technologies announced a collaboration to bring Codex into hybrid and on-premises enterprise environments .
Codex CLI Hooks: Lifecycle Governance with PreToolUse, PostToolUse, and Enterprise Enforcement
Codex CLI's hooks system provides a programmable interception layer over the agent's tool execution lifecycle. Every shell command, file edit, and MCP tool.
The Agentic Pricing Wars: OpenAI's Enterprise Migration Offer, Anthropic's Quota Expansion, and the Real Cost of Switching
On 13 May 2026, OpenAI launched a 30-day Switch to Codex promotion offering two months of free enterprise usage for organisations transitioning from.
Building Custom Code Review Pipelines with the Codex SDK: Structured Findings Across GitHub, GitLab, and Azure DevOps
Codex ships with built-in GitHub pull request review — enable it in settings and every PR gets an automatic @codex review pass .
Codex Access Tokens: Enterprise CI/CD Authentication with Workspace Identity
On 5 May 2026 OpenAI shipped Codex access tokens — a new credential type that lets ChatGPT Business and Enterprise workspace members generate long-lived.
Codex CLI's Extension-First Architecture: Guardian as a Plugin, Namespaced Extensions, and Modular Governance
The v0.131 alpha track (May 9–13 2026) reveals a fundamental architectural shift inside Codex CLI: core features that were once monolithic internal.
Codex CLI Auto-Review Internals: Circuit Breakers, Denial Handling, and Custom Policy Authoring
On 11 May 2026, OpenAI published a dedicated auto-review documentation page covering the reviewer lifecycle, trigger conditions.
OpenAI Daybreak and Codex Security: From Developer Tool to Enterprise Cyber Defence Platform
On 11 May 2026, OpenAI announced Daybreak, an umbrella cybersecurity initiative that bundles frontier AI models, the Codex Security application-security.
The OpenAI Deployment Company: What $4 Billion and 150 Forward Deployed Engineers Mean for Codex CLI in the Enterprise
On 11 May 2026, OpenAI announced the OpenAI Deployment Company — a majority-owned subsidiary backed by more than $4 billion in initial capital from 19.
Anthropic's 2026 Agentic Coding Trends Report: What It Means for Codex CLI Practitioners
Anthropic published their 2026 Agentic Coding Trends Report in late April, drawing on case studies from Rakuten, TELUS, Zapier, CRED.
Codex CLI Enterprise Managed Configuration: Cloud Policies, Group-Based Enforcement, and Compliance Governance
Enterprise teams adopting Codex CLI face a governance challenge that individual developers never encounter: how do you enforce security policies across.
Codex Enterprise Analytics and Compliance APIs: Usage Dashboards, Code Review Metrics, and Audit Integration
With Codex now generally available across CLI, IDE extension, App, GitHub, and Slack surfaces , enterprise teams face a familiar question: how do we measure.
Codex CLI Observability Dashboards: Production Monitoring with SigNoz, Oodle, and Opik
Running Codex CLI in a team of one requires no observability. Running it across a dozen developers, each spawning interactive sessions, CI pipelines.
Measuring Codex CLI's Impact on Your Team: DORA Metrics, Token Telemetry, and the AI Productivity Paradox
Your team adopted Codex CLI three months ago. Pull requests are up. Developers report feeling faster.
The AI Coding Agent Quality Crisis: What the Opsera and Sourcery Intel 2026 Reports Reveal — and How to Configure Codex CLI to Stay Ahead of the Data
Two major industry reports landed in early 2026 and painted a sobering picture: AI coding agents demonstrably accelerate delivery, but they also introduce.
AWS Agent Toolkit for AWS: Enterprise MCP, Skills, and Plugins for Codex CLI
On 6 May 2026 AWS launched the Agent Toolkit for AWS, consolidating its scattered agent infrastructure into a single official bundle of MCP servers, skills.
Codex CLI Team Configuration: The .codex Directory, Shared Profiles, and Repository-Scoped Settings for Consistent Agent Behaviour
Individual developers can get productive with Codex CLI in minutes. Getting a ten-person team to work consistently with the same model, approval policies.
Codex CLI v0.130: Building Headless Agent Services with remote-control and the Thread Pagination API
Codex CLI v0.130.0, released on 8 May 2026, ships two features that quietly change what you can build on top of the agent: a new codex remote-control.
Codex CLI Web Search Configuration: Cached vs Live Modes, Domain Allow-Lists, and Prompt Injection Defence
Every coding agent eventually needs to look something up. A deprecated API flag, a new framework release, an unfamiliar error code — the model's training.
Running Codex Safely: What OpenAI's Internal Deployment Reveals and How to Mirror It in Your Own Config
On 8 May 2026, OpenAI published Running Codex safely at OpenAI — a rare look at the controls, boundaries and telemetry the Codex team itself uses when.
Coder Agents vs Codex CLI: Self-Hosted, Model-Agnostic Agent Infrastructure and What It Means for Enterprise AI Coding
On 6 May 2026, Coder Technologies released Coder Agents to public beta — a native AI coding agent that runs entirely on customer-owned infrastructure and.
Codex CLI + JetBrains MCP Server: Giving Your Terminal Agent IDE-Grade Intelligence
Codex CLI is a powerful terminal agent, but it operates blind to the rich static analysis, inspections, and run configurations that JetBrains IDEs.
Codex CLI Permission Profiles: Built-in Sandbox Modes, Custom Profiles, and the Two-Layer Security Model
Codex CLI implements a two-layer security model: sandbox enforcement controls what the agent can technically do.
Codex CLI Plugin Marketplace: Remote Installation, Workspace Sharing, and Bundled Hooks
Codex CLI v0.129 shipped comprehensive plugin management, turning the /plugins command into a full marketplace browser. This article covers how plugin.
Codex CLI Behind TLS-Inspecting Proxies: Custom CA Certificates for Enterprise Networks
Enterprise networks rarely let HTTPS traffic pass uninspected. Appliances from Zscaler, Palo Alto Networks, Fortinet, and others terminate TLS connections.
The Codex CLI Instruction Stack: How Six Configuration Surfaces Shape Agent Behaviour
Codex CLI does not read a single instruction file. It assembles a composite instruction set from six distinct surfaces, each with its own scope, precedence.
The Amazon Q Developer Sunset: Migration Paths for AWS Teams Moving to Codex CLI, Kiro, or Bedrock
On 30 April 2026, AWS announced that Amazon Q Developer IDE plugins and paid subscriptions will reach end of support on 30 April 2027.
Codex CLI Multi-Environment Sessions: One Conversation, Many Targets
Until May 2026, every Codex CLI session was anchored to a single execution context — one working directory, one sandbox, one filesystem.
Codex CLI Config Lockfiles: Reproducible Agent Sessions with Export, Replay, and Drift Detection
Every senior engineer has encountered the it worked on my machine problem with build tools.
Codex CLI Multi-Provider Resilience: Failover Chains, Account Pooling, and the Art of Uninterrupted Agent Sessions
Rate limits are the silent killer of deep-focus agent sessions. You are forty minutes into a complex refactoring loop, the model has built up a rich.
Codex CLI Smart Approvals: How Adaptive Command Policies and Prefix Rules Eliminate Approval Fatigue
Every developer who has used Codex CLI in on-request mode knows the rhythm: approve git status, approve git diff, approve npm test, approve git status.
Codex CLI Through Databricks Unity AI Gateway: Enterprise Governance, Rate Limits, and Guardrails for Coding Agents
Enterprise teams adopting Codex CLI face a recurring governance challenge: how do you give fifty — or five thousand.
Codex CLI Enterprise Observability: Choosing and Configuring Grafana Cloud, SigNoz, Dynatrace, and Opik
Codex CLI has shipped opt-in OpenTelemetry export since v0.107.0, but the documentation stops at heres how to configure an OTLP endpoint .
Codex CLI in the Post-Password Era: Advanced Account Security, Passkeys, and Hardening Your Authentication Chain
On 30 April 2026, OpenAI launched Advanced Account Security — a new opt-in hardening layer that disables password-based login entirely, mandates.
Codex CLI on Amazon Bedrock: Enterprise Configuration, SigV4 Authentication, and AWS-Native Workflows
On 28 April 2026, AWS and OpenAI announced that Codex — the OpenAI coding agent — is available on Amazon Bedrock in limited preview . For enterprise teams.
Codex CLI Plugin-Bundled Hooks: Distributing Reusable Quality Gates Through the Marketplace
Codex CLI's hook system has matured steadily since its graduation to stable status in v0.124. Hooks let you intercept agent actions — blocking dangerous.
Agent Fingerprints in Pull Requests: What MSR 2026 Research Reveals and How to Configure Codex CLI for Professional Git Hygiene
Three papers presented at the 23rd International Conference on Mining Software Repositories (MSR '26, Rio de Janeiro, April 13-14 2026) reached the same.
Bedrock Managed Agents Powered by OpenAI: What Server-Side Codex Means for Enterprise Automation
On 28 April 2026, Amazon Web Services and OpenAI jointly announced Bedrock Managed Agents powered by OpenAI — a new capability that runs the OpenAI agent.
Codex CLI and OpenAI Privacy Filter: Preventing PII Leakage in Agent Workflows with Local On-Device Scanning
When a coding agent reads your codebase, it ingests everything in its context window — configuration files, test fixtures, log samples, database seeds.
Codex CLI Rollout Files: Session Recording, Replay, and Building Audit Trails
Every codex invocation silently writes a JSONL rollout file — a complete, append-only transcript of everything the agent saw, thought, executed.
Codex CLI with Amazon Bedrock: Native AWS Provider Configuration and Enterprise Deployment
On 28 April 2026, OpenAI and AWS jointly announced that OpenAI's frontier models and Codex are available on Amazon Bedrock in limited preview.
Codex at Four Million: What Three Weeks of Hypergrowth Reveals About the Agentic Coding Market
On 28 April 2026, the OpenAI-AWS partnership announcement casually confirmed that more than 4 million people now use Codex every week .
The End of Azure Exclusivity: How OpenAI's Multi-Cloud Pivot Changes the Codex CLI Enterprise Deployment Playbook
On 27 April 2026, Microsoft and OpenAI announced an amended partnership agreement that ended Azure's exclusive right to distribute OpenAI products.
GitHub Copilot's Usage-Based Billing Shift: What It Means for Codex CLI Teams
On 27 April 2026, GitHub announced that every Copilot plan will move from premium request units to usage-based billing with GitHub AI Credits on 1 June 2026.
Architecture Decision Records with Codex CLI: Automated ADR Generation, Governance, and the Agent-Architecture Gap
Every team says they will write Architecture Decision Records. Few actually do. The friction is well understood.
Building AI-Native Engineering Teams with Codex CLI: The Seven-Phase SDLC Adoption Playbook
Coding agents have crossed the chasm from novelty to infrastructure. OpenAI reports three million weekly active Codex users as of April 2026 .
Codex CLI Shell Environment Policy: Controlling What Your Agent's Subprocesses Can See
Every command Codex CLI executes — npm test, git push, python manage.py migrate — runs as a subprocess that inherits environment variables from your shell.
Codex CLI with Azure OpenAI and Microsoft Foundry: Enterprise Agent Deployment on Azure Infrastructure
Codex CLI's first-party GitHub integration makes it trivially easy to start coding with agents — but many enterprise engineering teams run on Azure.
Codex CLI Enterprise Managed Configuration: requirements.toml, managed_config.toml, and Admin-Enforced Policies
Deploying Codex CLI to a team of five developers is straightforward — everyone edits their own config.toml and moves on.
AI Coding Agent Adoption in 2026: What the Survey Data Actually Shows and Where Codex CLI Fits
Three independent surveys published in April 2026 — the JetBrains AI Pulse (10,000+ developers), Sonar's State of Code (developer survey + telemetry).
Codex CLI Filesystem Security: Deny-Read Policies, Glob Patterns, and Credential Protection
Every developer workstation is a treasure trove of secrets: .env files, SSH keys, cloud credentials in ~/.aws, API tokens scattered through shell profiles.
NVIDIA's 10,000-Developer Codex Deployment: Enterprise Patterns for Large-Scale AI Agent Rollout
On 24 April 2026, NVIDIA revealed that over 10,000 employees across engineering, product, legal, marketing, finance, sales, HR, operations, and developer.
AWS AgentCore's Managed Harness and Coding Skills: What They Mean for Codex CLI Teams
On 22 April 2026, AWS announced three additions to Amazon Bedrock AgentCore: a managed agent harness, a dedicated AgentCore CLI, and pre-built coding skills.
v0.124 Hooks Migration Guide: From hooks.json to Inline config.toml
Codex CLI v0.124.0, released on 23 April 2026, marks hooks as stable and introduces inline hook definitions directly inside config.toml and requirements.toml.
Codex CLI Plugin Marketplace: Building, Distributing, and Managing Extensions at Scale
OpenAI launched the Codex plugin marketplace on 26 March 2026, packaging skills, MCP servers, and app integrations into shareable, installable bundles that.
Codex CLI for Polyglot Codebases: Hierarchical AGENTS.md, Per-Directory Config, and Multi-Language Workflow Patterns
Most Codex CLI guides assume a single-language repository. Reality is messier — a TypeScript frontend, Go API gateway, Python ML services, and Rust.
Codex Labs and the GSI Network: What Enterprise-Scale Codex Deployment Means for CLI Power Users
On 21 April 2026, OpenAI announced Codex Labs alongside partnerships with seven Global Systems Integrators (GSIs) — Accenture, Capgemini, CGI, Cognizant.
NVIDIA OpenShell and Codex CLI: Kernel-Level Sandboxing for Autonomous Coding Agents
Codex CLI ships with its own sandbox — a two-axis model combining approval policies and execution constraints .
Workspace Agents and Codex Slack Integration: From CLI Automations to Team-Shared Agentic Workflows
On 22 April 2026, OpenAI launched workspace agents — shared, persistent agents powered by Codex that run in the cloud and integrate directly into Slack.
Agent Identity Key Rotation and Security Operations for Codex CLI
The v0.123 release of Codex CLI introduced AuthMode::AgentIdentity, giving each agent its own Ed25519 key pair and replacing forwarded bearer tokens with.
Codex CLI Custom Model Providers: The Complete Configuration Guide
Codex CLI ships with three built-in providers — openai, ollama, and lmstudio — but the real power lies in its extensible provider framework. Since v0.122.0.
Agent Identity Authentication: How Codex CLI Agents Authenticate as Themselves in v0.123
For most of Codex CLI's life, every API request left the agent wearing a borrowed identity — a user's OAuth token or API key stapled to outbound calls.
Cloud Development Environments for AI Coding Agents: Running Codex CLI on Coder, Daytona, and Ephemeral Infrastructure
Running Codex CLI on your laptop works brilliantly for solo development. But the moment you scale to teams of agents operating across multiple repositories.
Routing Codex CLI Through AI Gateways: Multi-Provider Access, Cost Control, and Failover
Codex CLI ships with first-class support for OpenAI models, but production teams rarely want a single point of failure, a single billing dimension.
Amazon Bedrock Provider for Codex CLI: Multi-Cloud Model Access
Running Codex CLI against Amazon Bedrock has been one of the most requested features since the tool launched. Issue #10400, filed in February 2026.
Codex CLI and Docker MCP Toolkit: Secure Containerised Tool Servers at Scale
The Model Context Protocol gives Codex CLI access to external tools — databases, filesystems, APIs, browsers.
Codex CLI HIPAA Compliance in 2026: The Regulated Workspace Exclusion and What It Means
If your organisation processes Protected Health Information (PHI) and you are evaluating Codex CLI, there is a critical distinction buried in OpenAI's.
Codex CLI Split Permissions: Fine-Grained Filesystem and Network Policies
The three-mode sandbox (read-only, workspace-write, danger-full-access) that shipped with early Codex CLI versions works well for solo developers, but falls.
Remote HTTP MCP: Codex CLI Completes the Enterprise Tool Services Stack
On April 19, 2026, OpenAI engineer Ahmed Ibrahim (@aibrahim-oai) opened a 4-part PR stack (#18581–#18584) that completes remote streamable HTTP MCP support.
When Guardian Approval Goes Wrong: Failure Modes and Escalation Patterns
Guardian auto-review is one of the most powerful features in Codex CLI — a subagent that reviews approval requests on your behalf.
The Asymmetric Feedback Problem: Why Coding Agents Silently Fail at Business Logic
Your coding agent just wrote a purchasing module, ran all the tests, and reported success. The code compiles, the API calls return 200s, and the database.
Code Modernisation with Codex CLI: The ExecPlan-Driven Migration Pipeline
Legacy modernisation projects have a well-earned reputation for overruns and silent failures. A 2026 industry analysis found that organisations adopting.
Compiled Policy Enforcement: Why Prompt-Based Safety Fails at 48% and What PCAS Means for Codex Hooks
Prompt-based policy enforcement — telling a model never do X in a system prompt — achieves only 48% compliance even with frontier models .
Learned Capability Governance: What Aethelgard Means for Codex Permission Profiles
A summarisation task receives the same shell execution, subagent spawning, and credential access capabilities as a code deployment task. Sidik and Rokach.
Codex CLI Offline Mode: Local Models, Air-Gapped Setups, and What Works Without Internet
Can I run Codex CLI without internet? is one of the most common search queries that leads nowhere.
Codex CLI Proxy Configuration: SOCKS, HTTP, and Corporate Networks
Running Codex CLI behind a corporate proxy is one of the most common friction points in enterprise adoption. Between TLS-intercepting proxies, SOCKS.
Policy-as-Code for Coding Agents: From the OpenAI Governance Cookbook to Codex CLI guardrails
Every organisation deploying coding agents hits the same wall: security wants to audit, legal wants guardrails, and engineering wants to ship.
The Subagent Resource Leak Problem: Why MCP Process Trees Accumulate and What McpConnectionManager::shutdown() Fixes
If you run Codex CLI with multiple MCP servers and use subagent workflows, you have almost certainly experienced the symptoms.
The Agent Orchestrator Landscape: Scion, CAO, ComposioHQ, and Choosing Your Multi-Agent Runtime
Running a single Codex CLI session is productive. Running five in parallel — each with its own worktree, branch, and PR — is transformative. But the moment.
The Agents SDK Harness and Portable Sandbox Manifests: Running Codex Workflows Across Seven Compute Providers
On April 16, 2026, OpenAI shipped the most significant update to the Agents SDK since its launch: a model-native harness that standardises how agents.
Anthropic's Eight Agentic Coding Trends Through a Codex CLI Lens: A Practitioner's Response
Anthropic's 2026 Agentic Coding Trends Report, published in March 2026, identifies eight trends reshaping how software gets built . Drawing on case studies.
The Automated Review-Fix Loop: CodeRabbit, Cross-Provider Review, and Closing the Quality Gap in Agent-Generated Code
Agent-generated code ships fast, but quality remains the bottleneck. The Hacker News consensus on Codex is blunt: the code can be quite sloppy and.
Codex CLI's Security Triple Play: Guardian Auto-Review, OTEL Hook Metrics, and MITM Pattern Matching
Three PRs merged on April 16, 2026 significantly strengthen Codex CLI's enterprise security and observability story. Together, they form a coherent security.
Cross-Tool Agent Memory: MemPalace, Built-In Memory, and the Portability Problem
Every AI coding assistant now offers some form of persistent memory — yet none of them talk to each other. If your team uses Codex CLI for autonomous tasks.
The Real Cost of Multi-Model Review Loops
Cross-model review — writing code with one agent and reviewing it with another — has become the de facto quality pattern in agentic coding workflows.
Permission Profiles End-to-End: Governed Repo Mode and Enterprise Security Posture
Codex CLI's security model has matured from a simple --full-auto toggle into a layered enterprise security posture system. Permission profiles, granular.
Purpose-Built Agent Models: What codex-auto-review Tells Us About the Future of Specialised AI
On 16 April 2026, a single-commit pull request landed in the Codex CLI repository that carries outsized strategic significance.
Agent Memory Governance: GDPR, Data Retention, and Enterprise Memory Policies
Codex CLI's persistent memory system — the two-phase pipeline that extracts, consolidates, and reinjects session knowledge across invocations — is arguably.
Codex as a GitHub Coding Agent: Agent HQ, Model Selection, and Cloud-Based Code Review
Most coverage of Codex focuses on the CLI — the open-source terminal agent you install with npm install -g @openai/codex.
Execution Policy Rules in Codex CLI: Starlark-Based Command Governance for Teams
Every senior developer running Codex CLI has felt the friction: approve git status, then approve git diff, then approve git log — each individually, each.
Goal Mode: Persistent Objectives with Token Budgets and Autonomous Continuation
Codex CLI has steadily expanded its autonomy surface — from --full-auto mode through subagent workflows and codex exec for headless batch runs. But every.
Codex CLI Observability with OpenTelemetry: Tracing Agent Sessions, Tool Calls, and API Requests
As coding agents move from individual experimentation to team-wide adoption, the question shifts from does it work? to how well is it working.
Codex CLI's Plugin Architecture Matures: codex-core-plugins Extraction and FedRAMP Routing
Two PRs merged on April 16, 2026 signal Codex CLI's transition from a monolithic coding tool to a modular, enterprise-grade platform.
The Node.js-Free Codex CLI: Rust Binary Installer and Enterprise Deployment
In May 2025, OpenAI announced the rewrite of Codex CLI from TypeScript to Rust. By early 2026, the Rust implementation became the default experience.
Self-Healing CI/CD for Agentic Systems: The Pipeline Doctor Pattern and LLM-as-a-Judge
Traditional CI/CD pipelines were designed for deterministic software. A test either passes or fails; a build either compiles or doesn't.
Agent Identity Stack Complete: Cryptographic Attribution for Multi-Agent Audit Trails
Codex CLI v0.121.0, released today, ships two PRs that introduce a use_agent_identity feature flag and the ability to register agent identities behind it .
Memory Lifecycle Management: Create, Consolidate, Clean, Delete in Codex CLI
Since v0.100.0, Codex CLI has shipped a persistent memory system that retains facts, preferences, and project context across sessions.
Codex CLI in Java Spring Teams: Plugging Into SonarQube, Jira, and Your Existing CI/CD Pipeline
Most Codex CLI content assumes you are starting fresh with a JavaScript or Python project. Enterprise Java Spring teams do not start fresh.
AWS Agent Plugins and the Compound Plugin Pattern: How Cloud Providers Are Shipping Production-Grade Agent Skills
On 17 February 2026, AWS Labs open-sourced awslabs/agent-plugins — the first major cloud provider plugin suite purpose-built for AI coding agents .
Cloud Agent Plugin Suites: AWS Led, Azure Followed, and the GCP Gap
In February 2026, AWS Labs open-sourced awslabs/agent-plugins — the first major cloud provider plugin suite built for AI coding agents . Five weeks later.
From Manual Config to One-Click Pod: How Plugins Transform the Agentic Engineering Pod
The Agentic Engineering Pod — three humans (Context Architect, Value Engineer, Quality Engineer) amplified by agent capabilities — is a powerful delivery.
Codex CLI and Terraform: Agent Skills, MCP Servers, and Infrastructure-as-Code Workflows
Infrastructure as Code is one of the highest-stakes domains for AI-assisted development. A hallucinated resource argument in a Terraform plan can provision.
Docker Sandboxes for Codex CLI: MicroVM Isolation, the sbx CLI, and When to Use External Sandboxing
Codex CLI ships with one of the strongest built-in sandboxes in the AI coding agent space — Landlock plus seccomp on Linux, Seatbelt on macOS, restricted.
MCP Security in Codex CLI: CVE Lessons, Config Hardening, and Enterprise Trust Boundaries
The Model Context Protocol has become the connective tissue of agentic coding — and its attack surface has grown accordingly. Between January and February.
What the ETH Zurich Paper Gets Wrong (and Right) About AGENTS.md
In February 2026, researchers at ETH Zurich published a paper that sent shockwaves through the AI-assisted development community: Evaluating AGENTS.md.
McAgile: The McDonaldization of Software Development Meets AI Coding Agents
In 1993, the sociologist George Ritzer published The McDonaldization of Society, arguing that the principles making McDonald's successful — efficiency.
SAFe Was Bad for Agility. For AI Coding Agents, It's Worse.
Jeff Gothelfs recent article SAFe Was Bad for Agility. For AI, Its Catastrophic makes a sharp argument: the Scaled Agile Framework.
Building Codex CLI Plugins: Architecture, Manifests, and Enterprise Distribution
Since their launch on 26 March 2026, Codex plugins have matured from a curiosity into a genuine distribution mechanism for reusable AI workflows.
Codex CLI Governance APIs: Analytics Dashboard, Compliance Exports, and the Enterprise Audit Pipeline
Codex CLI ships three distinct data pipelines — client-side analytics, the Analytics API, and the Compliance API.
Remote Development with Codex CLI: App-Server WebSocket Transport, the --remote Flag, and Persistent Agent Sessions
The shift to remote-first development has been underway for years, but AI coding agents complicate matters. Codex CLI's interactive TUI traditionally.
MCP Tool Annotations as Risk Vocabulary: How Codex CLI Uses Hints to Drive Approval Decisions
Every MCP server exposes tools. Some tools read a database schema. Others delete production tables. Without a shared language for expressing this.
Guardian Review IDs, Timeouts and Delta Transcripts: Enterprise Audit-Ready Governance
Codex CLI v0.119 and v0.120 shipped a trio of guardian improvements that transform the experimental Smart Approvals feature from a developer convenience.
Agent Identity in Codex CLI: The use_agent_identity Feature Flag, Biscuit Tokens, and Verified Multi-Agent Trust
Multi-agent architectures have an attribution problem. When three subagents collaborate on a pull request.
Codex Marketplace: Plugin Distribution and the Plugin Marketplace Add Command
OpenAI's plugin marketplace, launched on 27 March 2026, transforms Codex from a standalone coding agent into an extensible platform. Plugins bundle skills.
Biscuit Tokens for Agent Identity: From PR to Production
The companion article on Codex CLI's use_agent_identity feature flag covers the four-PR stack that wires Biscuit tokens into the CLI. This article goes.
Codex CLI's Memory and Reach: #Mentions for Cross-Session Context and Waypoints for Multi-Host Execution
Two draft PRs opened on April 11, 2026 reveal where Codex CLI is heading: deeper memory and wider reach.
The Complete Codex CLI Pricing Guide: Subscriptions, Tokens, Cost Optimisation, and Competitive Analysis
Every AI coding agent runs on tokens, and tokens cost money. Codex CLI is unique among major AI coding agents: it is open-source, runs locally, and supports.
IBM Bob vs Codex CLI: Enterprise Agentic Coding Agents Compared
IBM Project Bob and OpenAI Codex CLI both call themselves agentic coding tools. They solve fundamentally different problems. Bob is an enterprise IDE built.
Guardian Output Schema and Enterprise Compliance Audit Trails in Codex CLI
Every approval gate in a CI/CD pipeline needs to answer two questions: what was decided? and why? Codex CLI's guardian reviewer subagent — the AI that.
Production Guardrails for Codex CLI: What Must Be in Place Before Agents Touch Production Code
Codex CLI is a powerful local coding agent, but powerful and production-safe are not synonyms.
MCP Server Elicitations in Codex CLI: Structured User Input, Auto-Approval, and Custom Server Patterns
Traditional agent–tool interactions are fire-and-forget: the agent calls a tool, the tool returns a result. But production workflows frequently need a pause.
Codex Pay-As-You-Go Pricing: Modelling Costs for Multi-Agent Workflows
On 2 April 2026, OpenAI replaced Codex's per-message credit system with token-based billing aligned to API usage. The same announcement lowered the annual.
Codex Enterprise Compliance: Audit Logs, Team Cost Budgets and the Admin Dashboard
Running Codex CLI across a fifty-person engineering department is a different proposition from a solo developer experimenting in a side project. Regulated.
The 2026 CLI Agent SaaS Readiness Matrix: 11 Tools Compared for Production Embedding
The CLI agent landscape has fragmented into eleven serious contenders, each with a different theory of how an AI coding agent should be embedded inside a.
Codex CLI Commit Attribution: Tagging Agent Work with commit_attribution
When Codex writes code and you commit it, who gets credited? Until early 2026, the answer was: nobody notable.
Codex CLI Cost Management: Token Strategy, Model Routing and Quota Control
The biggest surprise in Codex deployments isn't the cost of output tokens — it's the accumulated cost of conversation history.
Codex CLI OpenTelemetry: Observability and Metrics in Production
Codex CLI ships built-in OpenTelemetry support for production observability — traces, logs, and metrics from every agent run.
Codex CLI in Regulated Environments: HIPAA, SOC 2, and Financial Services
Deploying AI coding agents in healthcare, financial services, or any SOC 2-audited environment introduces obligations that go well beyond performance or.
Codex as a GitHub Copilot Coding Agent: Assigning Issues and PRs at Scale
OpenAI Codex is no longer just a CLI tool you run locally. As of early 2026, Codex — alongside Claude — is available as a first-class coding agent inside.
Codex CLI in 2026: What's New, What's Changed and What's Coming
A comprehensive guide to every major Codex CLI change in 2026 — new models, hooks, subagents, Codex Spark, enterprise features, and what's still on the roadmap.
Codex Enterprise Admin Guide: RBAC, Managed Policies and Compliance API
Sources: developers.openai.com/codex/enterprise/admin-setup · developers.openai.com/codex/enterprise/governance · March 2026
Codex CLI Enterprise Deployment: Managed Policies and Team Configuration
Rolling Codex CLI out to a team of ten is a different proposition from running it on your own laptop. At scale you need guardrails that users cannot.