radar

DEEP_DIVE_STORY.LNK

howtonotcode.com // protocol_active
arrow_back_ios RETURN_TO_FEED
READ_TIME 0:45_MIN
LIVE_REDACTION
OPENAI PUB_DATE: 2026.04.21

CODEX 0.122 HARDENS SANDBOXING AND PLUGINS, SMOOTHS TUI; WATCH FOR UPGRADE SNAGS

OpenAI’s Codex app 0.122 ships stronger sandboxing, revamped plugin workflows, and TUI upgrades, with a few upgrade issues reported by users. The new release o...

Codex 0.122 hardens sandboxing and plugins, smooths TUI; watch for upgrade snags

OpenAI’s Codex app 0.122 ships stronger sandboxing, revamped plugin workflows, and TUI upgrades, with a few upgrade issues reported by users.

The new release of the Codex app adds deny‑read glob policies, managed deny‑read requirements, and platform sandbox enforcement, plus isolated exec that ignores user config. Plugin workflows get tabbed browsing, inline enable/disable toggles, and support for remote, cross‑repo, or local marketplace sources.

TUI gains quick “/side” conversations and queued input now supports slash commands and bang shell prompts. Tool discovery and image generation are on by default, with better MCP and image metadata handling. Security flows tighten token handling and Windows sandbox permissions.

Around the edges, the OpenAI Agents SDK exposes a UI message stream helper, and langchain-openai 1.1.15 fixes streaming dict items and Azure chat profile inference. Some users report the latest Codex update wiped data and confusion around a new limit system; one post flags a wipe.

[ WHY_IT_MATTERS ]
01.

Stronger sandbox and filesystem policies cut accidental secret exposure when running toolchains or agent exec.

02.

Plugin and TUI improvements make multi-tool, multi-repo workflows faster to stand up and operate.

[ WHAT_TO_TEST ]
  • terminal

    Create deny-read glob rules (e.g., /.ssh/, */.env) and confirm Codex exec and Plan Mode cannot read them on macOS/Windows/Linux.

  • terminal

    Host an internal plugin in a separate repo and load it via the new remote marketplace source; verify inline enable/disable and TUI /side flows.

[ BROWNFIELD_PERSPECTIVE ]

Legacy codebase integration strategies...

  • 01.

    Back up Codex workspaces before upgrading; a few users reported data loss after update; validate migration on a throwaway profile first.

  • 02.

    Audit and codify filesystem and exec policies; require trusted workspaces; regression-test agents built with LangChain streaming and Agents SDK UI streaming.

[ GREENFIELD_PERSPECTIVE ]

Fresh architecture paradigms...

  • 01.

    Adopt a sandbox-first posture: enable MCP tool discovery by default, isolate exec, and define deny-read globs from day one.

  • 02.

    Use createAiSdkUiMessageStream to stream tokens into your app UI while Codex or agents run background work.

Enjoying_this_story?

Get daily OPENAI + SDLC updates.

  • Practical tactics you can ship tomorrow
  • Tooling, workflows, and architecture notes
  • One short email each weekday

FREE_FOREVER. TERMINATE_ANYTIME. View an example issue.

arrow_back
PREVIOUS_DATA_LOG
GitHub throttles Copilot signups; Pro loses Opus while VS Code and CLI add rate‑limit visibility
Initialize_Return_to_Core
LINK_STATUS: 127.0.0.1 (SECURE)
NEXT_DATA_LOG
Kimi K2.6 goes open-weight: frontier-class MoE you can self-host (but watch the benchmarks)
arrow_forward
GET_DAILY_EMAIL
AI + SDLC // 5 MIN DAILY
FREE_FOREVER. TERMINATE_ANYTIME.