refactor: adding allow_prefix into ApprovedAllowPrefix

codex-rs/app-server/src/bespoke_event_handling.rs

@@ -950,7 +950,6 @@ async fn on_exec_approval_response(
         .submit(Op::ExecApproval {
             id: event_turn_id,
             decision: response.decision,
-            allow_prefix: None,
         })
         .await
     {
@@ -1155,7 +1154,6 @@ async fn on_command_execution_request_approval_response(
         .submit(Op::ExecApproval {
             id: event_turn_id,
             decision,
-            allow_prefix: None,
         })
         .await
     {

codex-rs/core/src/codex_delegate.rs

@@ -285,13 +285,7 @@ async fn handle_exec_approval(
     )
     .await;
 
-    let _ = codex
-        .submit(Op::ExecApproval {
-            id,
-            decision,
-            allow_prefix: None,
-        })
-        .await;
+    let _ = codex.submit(Op::ExecApproval { id, decision }).await;
 }
 
 /// Handle an ApplyPatchApprovalRequest by consulting the parent session and replying.

codex-rs/core/tests/suite/codex_delegate.rs

@@ -95,7 +95,6 @@ async fn codex_delegate_forwards_exec_approval_and_proceeds_on_approval() {
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::Approved,
-            allow_prefix: None,
         })
         .await
         .expect("submit exec approval");

codex-rs/core/tests/suite/otel.rs

@@ -843,7 +843,6 @@ async fn handle_container_exec_user_approved_records_tool_decision() {
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::Approved,
-            allow_prefix: None,
         })
         .await
         .unwrap();
@@ -902,7 +901,6 @@ async fn handle_container_exec_user_approved_for_session_records_tool_decision()
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::ApprovedForSession,
-            allow_prefix: None,
         })
         .await
         .unwrap();
@@ -961,7 +959,6 @@ async fn handle_sandbox_error_user_approves_retry_records_tool_decision() {
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::Approved,
-            allow_prefix: None,
         })
         .await
         .unwrap();
@@ -1020,7 +1017,6 @@ async fn handle_container_exec_user_denies_records_tool_decision() {
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::Denied,
-            allow_prefix: None,
         })
         .await
         .unwrap();
@@ -1079,7 +1075,6 @@ async fn handle_sandbox_error_user_approves_for_session_records_tool_decision()
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::ApprovedForSession,
-            allow_prefix: None,
         })
         .await
         .unwrap();
@@ -1139,7 +1134,6 @@ async fn handle_sandbox_error_user_denies_records_tool_decision() {
         .submit(Op::ExecApproval {
             id: "0".into(),
             decision: ReviewDecision::Denied,
-            allow_prefix: None,
         })
         .await
         .unwrap();

codex-rs/mcp-server/src/exec_approval.rs

@@ -150,7 +150,6 @@ async fn on_exec_approval_response(
         .submit(Op::ExecApproval {
             id: event_id,
             decision: response.decision,
-            allow_prefix: None,
         })
         .await
     {

codex-rs/protocol/src/protocol.rs

@@ -146,9 +146,6 @@ pub enum Op {
         id: String,
         /// The user's decision in response to the request.
         decision: ReviewDecision,
-        /// When set, persist this prefix to the execpolicy allow list.
-        #[serde(default, skip_serializing_if = "Option::is_none")]
-        allow_prefix: Option<Vec<String>>,
     },
 
     /// Approve a code patch