Merge branch 'rhan/approval-source' into rhan/escalations-approvals-sandbox

# Conflicts: # codex-rs/core/src/codex.rs # codex-rs/core/src/codex_tests.rs # codex-rs/core/src/state/turn.rs
2026-04-25 07:05:38 +00:00 · 2026-03-22 23:32:08 -07:00
parent 7a2c92bf89 d5d70d39f7
commit 2ad79b06f0
17 changed files with 441 additions and 32 deletions
--- a/codex-rs/app-server-protocol/schema/json/codex_app_server_protocol.v2.schemas.json
+++ b/codex-rs/app-server-protocol/schema/json/codex_app_server_protocol.v2.schemas.json
@@ -536,6 +536,15 @@
    "AppToolsConfig": {
      "type": "object"
    },
+    "ApprovalSourceMetadata": {
+      "enum": [
+        "guardian",
+        "user",
+        "policy",
+        "unknown"
+      ],
+      "type": "string"
+    },
    "ApprovalsReviewer": {
      "description": "Configures who approval requests are routed to for review. Examples include sandbox escapes, blocked network access, MCP approval prompts, and ARC escalations. Defaults to `user`. `guardian_subagent` uses a carefully prompted subagent to gather relevant context and apply a risk-based decision framework before approving or denying the request.",
      "enum": [
@@ -7515,6 +7524,16 @@
    },
    "ResponseItemMetadata": {
      "properties": {
+        "approval_source": {
+          "anyOf": [
+            {
+              "$ref": "#/definitions/ApprovalSourceMetadata"
+            },
+            {
+              "type": "null"
+            }
+          ]
+        },
        "is_tool_call_escalated": {
          "type": [
            "boolean",