clone/codex
1
0
Fork 0
mirror of https://github.com/openai/codex.git synced 2026-05-01 01:47:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

POC - Configurable ReadAcess in WorkspaceWrite SandboxPolicy

Browse Source
This commit is contained in:
Leo Shimonaka
2026-02-11 10:47:26 -08:00
parent d74fa8edd1
commit 04df7970fc
49 changed files with 1654 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
codex-rs/exec/tests/suite/sandbox.rs
View File

@@ -135,6 +135,7 @@ async fn python_multiprocessing_lock_works_under_sandbox() {
network_access: false,
exclude_tmpdir_env_var: false,
exclude_slash_tmp: false,
read_access: Default::default(),
};
let python_code = r#"import multiprocessing
@@ -248,6 +249,7 @@ async fn sandbox_distinguishes_command_and_policy_cwds() {
network_access: false,
exclude_tmpdir_env_var: true,
exclude_slash_tmp: true,
read_access: Default::default(),
};
// Attempt to write inside the command cwd, which is outside of the sandbox policy cwd.