Michael Bolin 082fc4f632 protocol: report session permission profiles (#18282) ...

## Why

Clients that observe `SessionConfigured` need the same canonical
permission view that app-server thread responses provide. Reporting the
profile in protocol events lets clients keep their local state
synchronized without reinterpreting legacy sandbox fields.

## What changed

This adds `permission_profile` to `SessionConfigured` and propagates it
through core, exec JSON output, MCP server messages, and TUI
history/widget handling.

## Verification

- `cargo test -p codex-tui permissions -- --nocapture`
- `cargo test -p codex-core --test all permissions_messages --
--nocapture`















































---
[//]: # (BEGIN SAPLING FOOTER)
Stack created with [Sapling](https://sapling-scm.com). Best reviewed
with [ReviewStack](https://reviewstack.dev/openai/codex/pull/18282).
* #18288
* #18287
* #18286
* #18285
* #18284
* #18283
* __->__ #18282

2026-04-22 21:29:32 -07:00

..

fixtures

Use helpers instead of fixtures (#3888)

2025-09-19 06:46:25 -07:00

suite

sandbox: remove dead seatbelt helper and update tests (#17859)

2026-04-14 20:48:01 -07:00

all.rs

Add explicit codex exec events (#4177)

2025-09-25 17:47:09 +00:00

event_processor_with_json_output.rs

protocol: report session permission profiles (#18282)

2026-04-22 21:29:32 -07:00