mirror of https://github.com/openai/codex.git synced 2026-04-24 14:45:27 +00:00

Files

zhao-oai e0fb3ca1db refactoring with_escalated_permissions to use SandboxPermissions instead (#7750 )

helpful in the future if we want more granularity for requesting
escalated permissions:
e.g when running in readonly sandbox, model can request to escalate to a
sandbox that allows writes

2025-12-10 17:18:48 +00:00

src

fix: allow sendmsg(2) and recvmsg(2) syscalls in our Linux sandbox (#7779 )

2025-12-09 09:24:01 -08:00

tests

refactoring with_escalated_permissions to use SandboxPermissions instead (#7750 )

2025-12-10 17:18:48 +00:00

Cargo.toml

chore: add cargo-deny configuration (#7119 )

2025-11-24 12:22:18 -08:00

README.md

fix: overhaul how we spawn commands under seccomp/landlock on Linux (#1086 )

2025-05-23 11:37:07 -07:00

README.md

codex-linux-sandbox

This crate is responsible for producing:

a codex-linux-sandbox standalone executable for Linux that is bundled with the Node.js version of the Codex CLI
a lib crate that exposes the business logic of the executable as run_main() so that
- the codex-exec CLI can check if its arg0 is codex-linux-sandbox and, if so, execute as if it were codex-linux-sandbox
- this should also be true of the codex multitool CLI