Security & Sandboxing

Articles on sandbox policies, permission profiles, authentication, supply-chain security and hardening Codex.

243 articles

Patch the Planet: What OpenAI's Open-Source Security Initiative Means for Codex CLI Defensive Workflows

OpenAI's Patch the Planet initiative, launched 22 June 2026 with Trail of Bits and HackerOne, pairs GPT-5.5-Cyber with Codex to discover and fix vulnerabilities across 30+ critical open-source projects. This article examines the initiative's architecture, early results, and what it teaches Codex CLI users about integrating security scanning, AGENTS.md directives, and hooks into everyday development.

Codex Computer Use on Windows: Foreground Desktop Automation with Agent Sandbox Controls

On 29 May 2026, OpenAI shipped Computer Use for Windows in Codex App v26.527.1 — giving the agent the ability to see, click, and type inside Windows desktop applications. This article covers the technical architecture, the foreground-only execution model, sandbox constraints, permission boundaries, remote-control integration, and the geographic restrictions that exclude Europe at launch.

Codex CLI v0.137 Alpha: Remote Control Client Management, Skills Extension Architecture, and Code-Mode Image Generation

v0.137.0-alpha.4 landed on npm on 3 June 2026. This preview unpacks the six most significant development directions: remote-control client revocation without relay enrolment, a dedicated skills extension crate, per-turn skill catalogue resolution, permission-profile modernisation, image generation inside code-mode sessions, and decoupled Python SDK wheel publishing.

Codex CLI v0.120 Release Deep Dive

Codex CLI v0.120.0 landed on 11 April 2026, one day after the feature-heavy v0.119.0 release that brought Realtime V2 voice sessions and richer MCP App.