Removed experimental "command risk assessment" feature (#7799)

This experimental feature received lukewarm reception during internal testing. Removing from the code base.
2026-05-02 02:17:22 +00:00 · 2025-12-10 11:48:11 -06:00
parent e0fb3ca1db
commit c4af707e09
40 changed files with 13 additions and 703 deletions
--- a/codex-rs/mcp-server/src/exec_approval.rs
+++ b/codex-rs/mcp-server/src/exec_approval.rs
@@ -4,7 +4,6 @@ use std::sync::Arc;
 use codex_core::CodexConversation;
 use codex_core::protocol::Op;
 use codex_core::protocol::ReviewDecision;
-use codex_core::protocol::SandboxCommandAssessment;
 use codex_protocol::parse_command::ParsedCommand;
 use mcp_types::ElicitRequest;
 use mcp_types::ElicitRequestParamsRequestedSchema;
@@ -38,8 +37,6 @@ pub struct ExecApprovalElicitRequestParams {
    pub codex_command: Vec<String>,
    pub codex_cwd: PathBuf,
    pub codex_parsed_cmd: Vec<ParsedCommand>,
-    #[serde(skip_serializing_if = "Option::is_none")]
-    pub codex_risk: Option<SandboxCommandAssessment>,
 }

 // TODO(mbolin): ExecApprovalResponse does not conform to ElicitResult. See:
@@ -62,7 +59,6 @@ pub(crate) async fn handle_exec_approval_request(
    event_id: String,
    call_id: String,
    codex_parsed_cmd: Vec<ParsedCommand>,
-    codex_risk: Option<SandboxCommandAssessment>,
 ) {
    let escaped_command =
        shlex::try_join(command.iter().map(String::as_str)).unwrap_or_else(|_| command.join(" "));
@@ -85,7 +81,6 @@ pub(crate) async fn handle_exec_approval_request(
        codex_command: command,
        codex_cwd: cwd,
        codex_parsed_cmd,
-        codex_risk,
    };
    let params_json = match serde_json::to_value(&params) {
        Ok(value) => value,